CVE-2026-1649 | Community Events Plugin up to 1.5.7 on WordPress ce_venue_name cross site scripting

Inserito da Angelo Barbosa | Feb 18, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in Community Events Plugin up to 1.5.7 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation of the argument ce_venue_name leads to cross site scripting.

This vulnerability is referenced as CVE-2026-1649. Remote exploitation of the attack is possible. No exploit is available.

CVE-2026-1649 | Community Events Plugin up to 1.5.7 on WordPress ce_venue_name cross site scripting

Post correlati

CVE-2024-35639 | Webliberty Simple Spoiler Plugin up to 1.2 on WordPress cross site scripting

CVE-2024-51811 | Hussam Hussien Popup Image Plugin up to 1.0.1 on WordPress cross site scripting

CVE-2020-37187 | Nsasoft Nsauditor SpotDialup 1.6.7 Registration Name buffer overflow (Exploit 47904 / EDB-47904)

CVE-2023-7222 | Totolink X2000R 1.0.0-B20221212.1452 HTTP POST Request /bin/boa formTmultiAP submit-url buffer overflow