CVE-2026-8172 | Simple Basic Contact Form Plugin up to 20250114 on WordPress Link cross site scripting (ID 20250114)

Inserito da Angelo Barbosa | Giu 23, 2026 | CVE

A vulnerability was found in Simple Basic Contact Form Plugin up to 20250114 on WordPress. It has been declared as problematic. Affected by this issue is some unknown functionality of the component Link Handler. Executing a manipulation can lead to cross site scripting.

This vulnerability appears as CVE-2026-8172. The attack may be performed from remote. There is no available exploit.

It is advisable to implement a patch to correct this issue.

CVE-2026-8172 | Simple Basic Contact Form Plugin up to 20250114 on WordPress Link cross site scripting (ID 20250114)

Post correlati

CVE-2024-0688 | WebSub Plugin up to 3.1.4 on WordPress cross site scripting

CVE-2025-26580 | CompleteWebResources Page Post Specific Social Share Buttons Plugin up to 2.1 on WordPress cross-site request forgery

CVE-2026-8337 | Concrete CMS up to 9.5.0 authorization

CVE-2026-30077 | OpenAirInterface 2.2.0 AMF denial of service