CVE-2026-2593 | Greenshift Plugin up to 12.8.5 on WordPress Block Attribute _gspb_post_css cross site scripting

Inserito da Angelo Barbosa | Mar 5, 2026 | CVE

A vulnerability was found in Greenshift Plugin up to 12.8.5 on WordPress and classified as problematic. This affects the function _gspb_post_css of the component Block Attribute Handler. Executing a manipulation can lead to cross site scripting.

This vulnerability is tracked as CVE-2026-2593. The attack can be launched remotely. No exploit exists.

CVE-2026-2593 | Greenshift Plugin up to 12.8.5 on WordPress Block Attribute _gspb_post_css cross site scripting

Post correlati

CVE-2025-14654 | Tenda AC20 16.03.08.12 httpd /goform/setPptpUserList formSetPPTPUserList list stack-based overflow

CVE-2024-41314 | TOTOLINK A6000R 1.0.1-B20201211.2000 vif_disable iface command injection

CVE-2026-1419 | D-Link DCS700l 1.03.09 Web Form /setDayNightMode LightSensorControl command injection

CVE-2025-7790 | D-Link DI-8100 16.07.26A1 HTTP Request /menu_nat.asp out_addr/in_addr/out_port/proto stack-based overflow