CVE-2026-2466 | DukaPress Plugin up to 3.2.4 on WordPress cross site scripting

Inserito da Angelo Barbosa | Mar 11, 2026 | CVE

A vulnerability classified as problematic has been found in DukaPress Plugin up to 3.2.4 on WordPress. Affected is an unknown function. Performing a manipulation results in cross site scripting.

This vulnerability is cataloged as CVE-2026-2466. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2026-2466 | DukaPress Plugin up to 3.2.4 on WordPress cross site scripting

Post correlati

CVE-2022-41677 | Bosch Camera access control

CVE-2025-1942 | Mozilla Firefox up to 135 String.toUpperCase uninitialized pointer

CVE-2026-2874 | Tenda A21 1.0.0.0 fast_setting_wifi_set form_fast_setting_wifi_set ssid stack-based overflow

CVE-2024-35749 | Acurax Under Construction Maintenance Mode Plugin up to 2.6 on WordPress authentication spoofing