CVE-2026-4353 | cihubconnector CI HUB Connector Plugin up to 1.2.106 on WordPress Shortcode cihub_metadata cross site scripting

Inserito da Angelo Barbosa | Apr 22, 2026 | CVE

A vulnerability classified as problematic was found in cihubconnector CI HUB Connector Plugin up to 1.2.106 on WordPress. Affected by this vulnerability is the function cihub_metadata of the component Shortcode Handler. Such manipulation leads to cross site scripting.

This vulnerability is referenced as CVE-2026-4353. It is possible to launch the attack remotely. No exploit is available.

CVE-2026-4353 | cihubconnector CI HUB Connector Plugin up to 1.2.106 on WordPress Shortcode cihub_metadata cross site scripting

Post correlati

CVE-2019-25708 | Heatmiser Wifi Thermostat 1.7 networkSetup.htm cross-site request forgery (Exploit 46100 / EDB-46100)

CVE-2026-20446 | MediaTek MT6813 sec boot out-of-bounds write (MSV-3899 / ALPS09963054)

CVE-2026-2402 | Schneider Electric PowerChute Serial Shutdown excessive authentication (SEVD-2026-104-01)

CVE-2025-26967 | Stiofan Events Calendar for GeoDirectory Plugin up to 2.3.14 on WordPress deserialization