CVE-2026-2214 | code-projects for Plugin 1.0 AdminAddAlbum.php txtalbum cross site scripting

Inserito da Angelo Barbosa | Feb 8, 2026 | CVE

A vulnerability marked as problematic has been reported in code-projects for Plugin 1.0. This affects an unknown part of the file /Administrator/PHP/AdminAddAlbum.php. This manipulation of the argument txtalbum causes cross site scripting.

The identification of this vulnerability is CVE-2026-2214. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2026-2214 | code-projects for Plugin 1.0 AdminAddAlbum.php txtalbum cross site scripting

Post correlati

CVE-2024-43796 | Express.js up to 4.19.x response.redirect cross site scripting

CVE-2025-5393 | Alone Plugin up to 7.8.3 on WordPress alone_import_pack_restore_data authorization

CVE-2025-11464 | Ashlar-Vellum Cobalt CO File Parser heap-based overflow

CVE-2024-31651 | Cosmetics and Beauty Product Online Store 1.0 First Name cross site scripting