Skip to main content
Loading…
    CVE-2026-5776 — The Email Encoder WordPress plugin before 2.4.7 does not escape email addresses retrieved via user input, allowing unauthenticated attackers to perform Stored XSS attacks — CVE Database · The Intelligence Room