Reflected Cross-Site Scripting in Mang Board WP Plugin for WordPress
CVE-2026-13334
6.1MEDIUM
What is CVE-2026-13334?
The Mang Board WP plugin for WordPress is susceptible to reflected cross-site scripting due to inadequate input sanitization and output escaping in the 'stag' parameter. This vulnerability allows unauthenticated attackers to inject malicious scripts into web pages. Successful exploitation occurs when users are tricked into performing actions, such as clicking malicious links, which can lead to unauthorized script execution in their browsers.
Affected Version(s)
Mang Board WP 0 <= 2.3.4