myCred Plugin Vulnerable to Cross-Site Scripting
A Cross-site Scripting vulnerability has been identified in the myCred plugin. The vulnerability, scored 6.5 out of 10 on the CVSS v3.1 scale, was updated on June 1, 2026. This vulnerability could allow attackers to inject malicious scripts into web pages viewed by users.
Topics
Developing
- 882d Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore.
- 882d Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur.
- 882d Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est.
- 882d Sed ut perspiciatis unde omnis iste natus error sit voluptatem accusantium doloremque laudantium.
Sources · 7 independent
Mastodon
“🚨 EUVD-2026-33687📊 Score: 6.5/10 (CVSS v3.1)📦 Product: myCred🏢 Vendor: myCred📅 Updated: 2026-06-01📝 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i...”
Bluesky Social
“WP Maps Proの脆弱性が悪用され、WordPressサイトの乗っ取り被害が発生”
Unlock the full story
Get a Pro subscription or above to see the live story progression and the full list of independent sources confirming each event as they happen.
Log in to upgrade