CVE-2026-5113 | Gravity Forms Plugin up to 2.10.0 on WordPress Entries List Page wp_kses cross site scripting

Inserito da Angelo Barbosa | Mag 2, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in Gravity Forms Plugin up to 2.10.0 on WordPress. This impacts the function wp_kses of the component Entries List Page. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2026-5113. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2026-5113 | Gravity Forms Plugin up to 2.10.0 on WordPress Entries List Page wp_kses cross site scripting

Post correlati

CVE-2024-29985 | Microsoft unknown vulnerability

CVE-2024-11197 | babatechs Lock User Account Plugin up to 1.0.5 on WordPress protection mechanism

CVE-2024-24968 | Intel CPU FSM improper finite state machines in hardware logic (intel-sa-01097)

CVE-2024-56447 | Huawei HarmonyOS/EMUI Window Management Module privileges management