CVE-2026-9629 | codesupplyco Canvas Plugin up to 2.5.2 on WordPress day cross site scripting

Inserito da Angelo Barbosa | Giu 13, 2026 | CVE

A vulnerability was found in codesupplyco Canvas Plugin up to 2.5.2 on WordPress. It has been declared as problematic. This vulnerability affects unknown code. The manipulation of the argument day results in cross site scripting.

This vulnerability is cataloged as CVE-2026-9629. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2026-9629 | codesupplyco Canvas Plugin up to 2.5.2 on WordPress day cross site scripting

Post correlati

CVE-2023-49435 | Tenda AX9 22.03.01.46 command injection

CVE-2024-13213 | SingMR HouseRent 1.0 toAdminUpdateHousePage?hID=30 cross site scripting

CVE-2023-50732 | XWiki xwiki-platform-index-tree-macro authorization

CVE-2024-34147 | Telegram Bot Plugin up to 1.4.0 on Jenkins Controller File System missing encryption