CVE-2026-9677 | Shariff for WordPress Plugin up to 1.0.11 on WordPress Setting generateshariff shariff_infourl cross site scripting

Inserito da Angelo Barbosa | Giu 27, 2026 | CVE

A vulnerability classified as problematic was found in Shariff for WordPress Plugin up to 1.0.11 on WordPress. The impacted element is the function generateshariff of the component Setting Handler. Executing a manipulation of the argument shariff_infourl can lead to cross site scripting.

This vulnerability appears as CVE-2026-9677. The attack may be performed from remote. There is no available exploit.

CVE-2026-9677 | Shariff for WordPress Plugin up to 1.0.11 on WordPress Setting generateshariff shariff_infourl cross site scripting

Post correlati

CVE-2024-42676 | Huizhi Enterprise Resource Management System up to 1.0 DNPageAjaxPostBack /nssys/common/Upload unrestricted upload

CVE-2024-48860 | QNAP QuRouter prior 2.4.3.103 command injection (qsa-24-44)

CVE-2024-8586 | Uniong WebITR up to 2_1_0_27 URL redirect

CVE-2024-4945 | SourceCodester Best Courier Management System 1.0 view_parcel.php id unrestricted upload