CVE-2026-1611 | Wikiloops Track Player Plugin up to 1.0.1 on WordPress Shortcode cross site scripting

Inserito da Angelo Barbosa | Feb 6, 2026 | CVE

A vulnerability marked as problematic has been reported in Wikiloops Track Player Plugin up to 1.0.1 on WordPress. This affects an unknown function of the component Shortcode Handler. This manipulation causes cross site scripting.

This vulnerability appears as CVE-2026-1611. The attack may be initiated remotely. There is no available exploit.

CVE-2026-1611 | Wikiloops Track Player Plugin up to 1.0.1 on WordPress Shortcode cross site scripting

Post correlati

CVE-2024-34455 | Buildroot /dev/shm default permission (0b2967e)

CVE-2025-7893 | Foresight News App up to 2.6.4 on Android pro.foresightnews.appa AndroidManifest.xml improper export of android application components

CVE-2024-2137 | All-in-One Addons for Elementor Plugin up to 2.4.8 on WordPress Pricing Widget cross site scripting

CVE-2023-21634 | Qualcomm 835 Mobile PC Platform Radio Interface Layer memory corruption