3 matches found
CVE-2026-0691
The CM E-Mail Blacklist – Simple email filtering for safer registration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'blackemail' parameter in all versions up to, and including, 1.6.2. This is due to insufficient input sanitization and output escaping. This makes it...
CVE-2026-0691
CVE-2026-0691 applies to CM E-Mail Blacklist – Simple email filtering for safer registration (WordPress plugin) and is an authenticated Stored XSS via the black_email parameter, affecting versions up to 1.6.2. Root cause: insufficient input sanitization and output escaping; impact: authenticated ...
WordPress plugin CM E-Mail Blacklist – Simple email filtering for safer registrations. Cross-site scripting vulnerabilities
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...