CVE-2026-1608 | Video Onclick Plugin up to 0.4.7 on WordPress Shortcode cross site scripting

Inserito da Angelo Barbosa | Feb 6, 2026 | CVE

A vulnerability identified as problematic has been detected in Video Onclick Plugin up to 0.4.7 on WordPress. The affected element is an unknown function of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2026-1608. The attack can be initiated remotely. There is not any exploit available.

CVE-2026-1608 | Video Onclick Plugin up to 0.4.7 on WordPress Shortcode cross site scripting

Post correlati

CVE-2024-6640 | FreeBSD pf access control

CVE-2025-4685 | Gutentor Plugin up to 3.4.8 on WordPress Widget cross site scripting

CVE-2024-21985 | NetApp ONTAP REST API privileges management (ntap-20240126-0001)

CVE-2025-0565 | ZZCMS 2023 /index.php id sql injection