CVE-2026-2432 | creativemindssolutions CM Custom Reports Plugin up to 1.2.7 on WordPress Setting cross site scripting

Inserito da Angelo Barbosa | Mar 20, 2026 | CVE

A vulnerability described as problematic has been identified in creativemindssolutions CM Custom Reports Plugin up to 1.2.7 on WordPress. This impacts an unknown function of the component Setting Handler. Executing a manipulation can lead to cross site scripting.

This vulnerability is tracked as CVE-2026-2432. The attack can be launched remotely. No exploit exists.

CVE-2026-2432 | creativemindssolutions CM Custom Reports Plugin up to 1.2.7 on WordPress Setting cross site scripting

Post correlati

CVE-2024-21803 | Linux Kernel up to 6.7 Bluetooth Module use after free

CVE-2024-12658 | IObit Advanced SystemCare Utimate up to 17.0.0 IOCTL AscRegistryFilter.sys 0x8001E01C null pointer dereference

CVE-2023-53099 | Linux Kernel up to 5.10.175/5.15.103/6.1.20/6.2.7 firmware include/linux/sched/mm.h in_atomic allocation of resources

CVE-2023-48380 | Softnext Mail SQR Expert up to 230330 os command injection