CVE-2026-6439 | jconti VideoZen Plugin up to 1.0.1 on WordPress Setting videozen_conf lang cross site scripting

Inserito da Angelo Barbosa | Apr 17, 2026 | CVE

A vulnerability, which was classified as problematic, was found in jconti VideoZen Plugin up to 1.0.1 on WordPress. This affects the function videozen_conf of the component Setting Handler. Such manipulation of the argument lang leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2026-6439. The attack can be launched remotely. No exploit exists.

You should upgrade the affected component.

CVE-2026-6439 | jconti VideoZen Plugin up to 1.0.1 on WordPress Setting videozen_conf lang cross site scripting

Post correlati

CVE-2024-2472 | LatePoint Plugin up to 4.9.9 on WordPress authorization

CVE-2024-10119 | SECOM WRTM326 up to 2.3.19 Requests os command injection

CVE-2024-0500 | SourceCodester House Rental Management System 1.0 Manage Tenant Details Name cross site scripting

CVE-2024-3526 | Campcodes Online Event Management System 1.0 index.php msg cross site scripting