CVE-2026-1293 | Yoast SEO Plugin up to 26.8 on WordPress Block Attribute yoast-schema cross site scripting

Inserito da Angelo Barbosa | Feb 6, 2026 | CVE

A vulnerability was found in Yoast SEO Plugin up to 26.8 on WordPress. It has been classified as problematic. Affected is an unknown function of the component Block Attribute Handler. This manipulation of the argument yoast-schema causes cross site scripting.

The identification of this vulnerability is CVE-2026-1293. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2026-1293 | Yoast SEO Plugin up to 26.8 on WordPress Block Attribute yoast-schema cross site scripting

Post correlati

CVE-2024-10616 | Tongda OA up to 11.9 webSignSubmit.php saleId sql injection

CVE-2024-25624 | dfir-iris iris-web up to 2.4.5 Template special elements used in a template engine

CVE-2024-12496 | Linear Plugin up to 2.7.12 on WordPress cross site scripting

CVE-2023-52160 | wpa_supplicant PEAP authorization