CVE-2026-1053 | Ivory Search Plugin up to 5.5.13 on WordPress Setting menu_gcse/nothing_found_text cross site scripting

Inserito da Angelo Barbosa | Gen 27, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in Ivory Search Plugin up to 5.5.13 on WordPress. This issue affects some unknown processing of the component Setting Handler. The manipulation of the argument menu_gcse/nothing_found_text leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2026-1053. The attack is possible to be carried out remotely. No exploit exists.

CVE-2026-1053 | Ivory Search Plugin up to 5.5.13 on WordPress Setting menu_gcse/nothing_found_text cross site scripting

Post correlati

CVE-2025-11463 | Ashlar-Vellum Cobalt XE File Parser integer overflow

CVE-2024-21648 | XWiki xwiki-platform/xwiki-platform-oldcore Rollback Action insufficient privileges

CVE-2025-22294 | Gravity Master Custom Field for WP Job Manager Plugin up to 1.3 on WordPress cross site scripting

CVE-2024-36511 | Fortinet FortiADC up to 7.4.4 Web Application Firewall security check (FG-IR-22-256)