CVE-2026-24980

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NooTheme Visionary Core noo-visionary-core allows Reflected XSS.This issue affects Visionary Core: from n/a through = 1.4.9...

CVE-2026-24980

CVE-2026-24980 affects the WordPress plugin NooTheme Visionary Core (noo-visionary-core) up to version 1.4.9. The issue is a Reflected Cross-Site Scripting (XSS) vulnerability caused by improper neutralization of input during web page generation, allowing injection of malicious scripts in pages v...