CVE-2026-1941 | WP Event Aggregator Plugin up to 1.8.7 on WordPress Shortcode wp_events cross site scripting

Full Article URL: https://vuldb.com/?id.346444
Textarea URL (this page): <a href="https://textarea.nl/i/eNrLKCkpKLbS1y8rzUlJ0kvOz9W3z0zRMzYxMzExAQCQRQj4_2026-02-18">https://textarea.nl/i/eNrLKCkpKLbS1y8rzUlJ0kvOz9W3z0zRMzYxMzExAQCQRQj4_2026-02-18
Source: https://vuldb.com/?rss.recent
Vuldb: https://vuldb.com
Publication date: 2026-02-18 07:07:46
Last retrieval: 2026-02-18 06:46:15.301114

07:07 - 18 Feb 2026

vuldb.com

A vulnerability classified as problematic has been found in WP Event Aggregator Plugin up to 1.8.7 on WordPress. This impacts the function wp_events of the component Shortcode Handler. Performing a manipulation results in cross site scripting. This vulnerability was named CVE-2026-1941. The attack may be initiated remotely. There is no available exploit.

https://vuldb.com/?id.346444

Article info: