CVE-2026-22192 | gVectors wpDiscuz up to 7.6.46 JSON Import customCss cross site scripting

Inserito da Angelo Barbosa | Mar 13, 2026 | CVE

A vulnerability classified as problematic was found in gVectors wpDiscuz up to 7.6.46. Affected by this vulnerability is an unknown functionality of the component JSON Import. Executing a manipulation of the argument customCss can lead to cross site scripting.

This vulnerability is tracked as CVE-2026-22192. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is advised.

CVE-2026-22192 | gVectors wpDiscuz up to 7.6.46 JSON Import customCss cross site scripting

Post correlati

CVE-2024-5127 | lunary-ai lunary up to 1.2.24 Setting access control

CVE-2024-43996 | ElementsKit Pro Plugin up to 3.6.0 on WordPress path traversal

CVE-2023-6134 | JBoss KeyCloak Incomplete Fix CVE-2020-10748 redirect_uri cross site scripting

CVE-2024-8573 | TOTOLINK AC1200 T8/AC1200 T10 4.1.5cu.861_B20230220/4.1.8cu.5207 /cgi-bin/cstecgi.cgi setParentalRules desc buffer overflow