CVE-2026-1904 | Simple Wp Colorfull Accordion Plugin up to 1.0 on WordPress Shortcode Title cross site scripting

Inserito da Angelo Barbosa | Feb 13, 2026 | CVE

A vulnerability described as problematic has been identified in Simple Wp Colorfull Accordion Plugin up to 1.0 on WordPress. The impacted element is an unknown function of the component Shortcode Handler. The manipulation of the argument Title results in cross site scripting.

This vulnerability is cataloged as CVE-2026-1904. The attack may be launched remotely. There is no exploit available.

CVE-2026-1904 | Simple Wp Colorfull Accordion Plugin up to 1.0 on WordPress Shortcode Title cross site scripting

Post correlati

CVE-2026-0904 | Google Chrome up to 143.0.7499.192 Digital Credentials ui layer

CVE-2024-28639 | Totolink X5000R/A7000R IP buffer overflow

CVE-2023-28546 | Qualcomm 4 Gen 1 Mobile Platform SPS Application memory corruption

CVE-2025-24800 | polytope-labs hyperbridge up to 15.0.0 control flow (GHSA-wwx5-gpgr-vxr7)