CVE-2026-8853 | websoudan MW WP Form Plugin up to 5.1.3 on WordPress update_post_meta memo cross site scripting

Inserito da Angelo Barbosa | Giu 10, 2026 | CVE

A vulnerability classified as problematic was found in websoudan MW WP Form Plugin up to 5.1.3 on WordPress. This issue affects the function update_post_meta. Executing a manipulation of the argument memo can lead to cross site scripting.

This vulnerability is tracked as CVE-2026-8853. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is advised.

CVE-2026-8853 | websoudan MW WP Form Plugin up to 5.1.3 on WordPress update_post_meta memo cross site scripting

Post correlati

CVE-2024-22247 | Vmware SD-WAN Edge 4.5.x/5.0.x BIOS Configuration improper authentication (VMSA-2024-0008)

CVE-2025-2560 | Ninja Forms Plugin up to 3.10.0 on WordPress Setting cross site scripting

CVE-2023-49431 | Tenda AX9 22.03.01.46 /goform/SetOnlineDevName mac command injection

CVE-2018-25293 | Mersenne Prime95 29.4b7 optional proxy password buffer overflow (Exploit 45226)