CVE-2026-2687 | Reading progressbar Plugin up to 1.3.0 on WordPress Setting cross site scripting

Inserito da Angelo Barbosa | Mar 12, 2026 | CVE

A vulnerability was found in Reading progressbar Plugin up to 1.3.0 on WordPress. It has been classified as problematic. This affects an unknown part of the component Setting Handler. Performing a manipulation results in cross site scripting.

This vulnerability is cataloged as CVE-2026-2687. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is recommended.

CVE-2026-2687 | Reading progressbar Plugin up to 1.3.0 on WordPress Setting cross site scripting

Post correlati

CVE-2025-22709 | Soft8Soft Verge3D Plugin up to 4.8.0 on WordPress cross site scripting

CVE-2025-49080 | Absolute Security Secure Access up to 13.53 denial of service

CVE-2024-24905 | Dell Secure Connect Gateway prior 5.22.00.16 Trusted Application Data Store cross site scripting (dsa-2024-077)

VDB-259053 | 9fans plan9port x509.c edump heap-based overflow