CVE-2026-5226 | Optimole Plugin up to 4.2.3 on WordPress get_current_url cross site scripting

Inserito da Angelo Barbosa | Apr 11, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in Optimole Plugin up to 4.2.3 on WordPress. This impacts the function get_current_url. This manipulation causes cross site scripting.

The identification of this vulnerability is CVE-2026-5226. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2026-5226 | Optimole Plugin up to 4.2.3 on WordPress get_current_url cross site scripting

Post correlati

CVE-2024-36580 | cdr0 sg 1.0.10 prototype pollution

CVE-2024-4190 | OpenText ArcSight Logger up to 7.3.0 P3 cross site scripting

CVE-2024-37280 | Elastic Elasticsearch 8.13.1/8.13.2/8.13.3/8.13.4 Document Ingestion stack-based overflow

CVE-2025-53478 | CheckUser Extension up to 1.39.12/1.42.6/1.43.1 on Mediawiki Special:Investigate Interface cross site scripting