Vulnerabilities

CVE-2026-5306

by Fred · 28/04/2026

The Check & Log Email WordPress plugin before 2.0.13 does not properly handle email replacement, which could allow unauthenticated users to perform Stored XSS attacks when the email encoder setting is enabled

More information : https://wpscan.com/vulnerability/97908c15-6e7a-4242-8c6f-66c8b804364c/

Similar

Tags: Cybersecurity Alert