CVE-2026-10531

The AI Share & Summarize WordPress plugin before 2.0.4 does not sanitise and escape some of its shortcode attributes before outputting them in a page, allowing users with the Contributor role and above to perform Stored Cross-Site Scripting attacks.
Configurations

No configuration.

History

24 Jun 2026, 13:16

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.4

24 Jun 2026, 07:16

Type Values Removed Values Added
New CVE

Information

Published : 2026-06-24 07:16

Updated : 2026-06-25 19:07


NVD link : CVE-2026-10531

Mitre link : CVE-2026-10531

CVE.ORG link : CVE-2026-10531


JSON object : View

Products Affected

No product.

CWE

No CWE.