Skip to main content
Loading…
    CVE-2026-4067 — The Ad Short plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ad' shortcode's 'client' attribute in all versions up to and including 2.0.1. This is due to — CVE Database · The Intelligence Room