CyberRota
← Ana sayfaya dön

CVE-2026-7850

MEDIUM · CVSS 5.9 EPSS %0.14

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-17T13:21:06.357 · Çekilme zamanı: 2026-06-30T12:25:15.492139+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-7850
Severity
MEDIUM
CVSS
5.9
EPSS
%0.14
WordPress

Orijinal NVD Açıklaması

The WP Magnific Popup WordPress plugin through 1.0 does not properly escape user-controlled link URLs before injecting them into the DOM when displaying image load error messages, allowing authenticated attackers with Author-level access or above to perform Stored Cross-Site Scripting attacks against any visiting user.