CVE-2026-5077 | hashthemes Total Plugin up to 2.2.1 on WordPress Home Page Blog Section the_title cross site scripting

Inserito da Angelo Barbosa | Mag 2, 2026 | CVE

A vulnerability classified as problematic was found in hashthemes Total Plugin up to 2.2.1 on WordPress. This vulnerability affects the function the_title of the component Home Page Blog Section. Such manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2026-5077. The attack can be executed remotely. There is not any exploit available.

CVE-2026-5077 | hashthemes Total Plugin up to 2.2.1 on WordPress Home Page Blog Section the_title cross site scripting

Post correlati

CVE-2024-10380 | SourceCodester Petrol Pump Management Software 1.0 /admin/ajax_product.php drop_services sql injection

CVE-2024-4154 | lunary-ai lunary PATCH Request incorrect synchronization

CVE-2024-4644 | SourceCodester Prison Management System 1.0 changepassword.php cross site scripting

CVE-2024-40762 | SonicWALL SonicOS SSL VPN weak prng (SNWLID-2025-0003)