CVE-2026-2718 | Dealia Plugin up to 1.0.6 on WordPress Gutenberg Block wp_kses cross site scripting

Inserito da Angelo Barbosa | Feb 19, 2026 | CVE

A vulnerability marked as problematic has been reported in Dealia Plugin up to 1.0.6 on WordPress. This issue affects the function wp_kses of the component Gutenberg Block Handler. This manipulation causes cross site scripting.

This vulnerability is registered as CVE-2026-2718. Remote exploitation of the attack is possible. No exploit is available.

CVE-2026-2718 | Dealia Plugin up to 1.0.6 on WordPress Gutenberg Block wp_kses cross site scripting

Post correlati

CVE-2024-46906 | Progress WhatsUp Gold up to 2024.0.0 sql injection

CVE-2025-57729 | JetBrains IntelliJ IDEA up to 2025.1 inclusion of functionality from untrusted control sphere

CVE-2024-29392 | Silverpeas Core 6.3 ClipboardSessionController cross site scripting

CVE-2023-50851 | N Squared Appointment Booking Calendar Plugin up to 1.6.6.0 on WordPress sql injection