CVE-2026-7209 | quantumcloud Simple Link Directory Plugin up to 8.9.2 on WordPress Shortcode title_font_size cross site scripting (EUVD-2026-26729)

Inserito da Angelo Barbosa | Mag 2, 2026 | CVE

A vulnerability described as problematic has been identified in quantumcloud Simple Link Directory Plugin up to 8.9.2 on WordPress. This vulnerability affects unknown code of the component Shortcode Handler. The manipulation of the argument title_font_size results in cross site scripting.

This vulnerability is reported as CVE-2026-7209. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is recommended.

CVE-2026-7209 | quantumcloud Simple Link Directory Plugin up to 8.9.2 on WordPress Shortcode title_font_size cross site scripting (EUVD-2026-26729)

Post correlati

CVE-2023-52467 | Linux Kernel up to 5.10.208/5.15.147/6.1.74/6.6.13/6.7.1 syscon of_syscon_register null pointer dereference

CVE-2024-35646 | Smartarget Message Bar Plugin up to 1.3 on WordPress cross site scripting

CVE-2026-33258 | PowerDNS Recursor up to 5.2.8/5.3.5/5.4.0 Zone allocation of resources

CVE-2025-2416 | Akinsoft LimonDesk up to 1.02.16 excessive authentication