CVE-2026-5306 - Check & Log Email < 2.0.13 - Unauthenticated Stored XSS
CVE ID :CVE-2026-5306 Published : April 28, 2026, 7:16 a.m. | 46 minutes ago Description :The Check & Log Email WordPress plugin before 2.0.13 does not properly handle email replacement, which could allow unauthenticated users to perform Stored XSS attacks when the email encoder setting is en
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Quantum can wait: Why CISOs should focus on today’s preventable cyber risks
- [CYBER] Windows Shell Vulnerability CVE-2026-32202 Moves From Patch Note to Active Threat
- [CYBER] CVE-2026-7280 - eMPIA Technology|AVACAST - Unquoted Service Path
- [CYBER] Reflections on BlackHat Asia 2026 and Arsenal
- [CYBER] CVE-2026-7279 - eMPIA Technology|AVACAST - DLL Hijacking
- [CYBER] RansomHouse claims breach of a popular Cybersecurity Vendor, possibly Barracuda Networks