CVE-2026-1042 | WP Hello Bar Plugin up to 1.02 on WordPress digit_one/digit_two cross site scripting

Inserito da Angelo Barbosa | Gen 19, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in WP Hello Bar Plugin up to 1.02 on WordPress. The affected element is an unknown function. Performing a manipulation of the argument digit_one/digit_two results in cross site scripting.

This vulnerability was named CVE-2026-1042. The attack may be initiated remotely. There is no available exploit.

CVE-2026-1042 | WP Hello Bar Plugin up to 1.02 on WordPress digit_one/digit_two cross site scripting

Post correlati

CVE-2024-25385 | FLVMeta 1.2.2 flvmeta/src/flv.c flv_close denial of service (Issue 23)

CVE-2024-13530 | zia-imtiaz Custom Login Page Styler Plugin up to 7.1.1 on WordPress lps_handle_delete_all_logs authorization

CVE-2023-28912 | Preh Car Connect Volkswagen MIB3 Infotainment System MIB3 OI MQB up to 0304 cleartext storage

CVE-2025-10578 | HP Support Assistant 8.1.52.1/8.7.50.3/9.44.18.0 privileges management