Skip to main content
Loading…
    CVE-2026-3600 — The Investi plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'investi-announcements-accordion' shortcode's 'maximum-num-years' attribute in all versions up — CVE Database · The Intelligence Room