CVE-2026-42678 | Liquid Web/StellarWP GiveWP Plugin up to 4.14.5 on WordPress cross site scripting

Inserito da Angelo Barbosa | Giu 1, 2026 | CVE

A vulnerability labeled as problematic has been found in Liquid Web/StellarWP GiveWP Plugin up to 4.14.5 on WordPress. This impacts an unknown function. Such manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2026-42678. The attack can be executed remotely. There is not any exploit available.

CVE-2026-42678 | Liquid Web/StellarWP GiveWP Plugin up to 4.14.5 on WordPress cross site scripting

Post correlati

CVE-2023-48376 | SmartStar CWS Web-Base 10.25 unrestricted upload

CVE-2025-14705 | Shiguangwu sgwbox N3 2.0.25 SHARESERVER Feature params command injection

CVE-2024-29857 | Bouncy Castle up to 1.77 F2m resource consumption

CVE-2024-3643 | Newsletter Popup Plugin up to 1.2 on WordPress cross-site request forgery