Cross Site Scripting Vulnerability in Simple URLs by WordPress
CVE-2026-57762
5.9MEDIUM
What is CVE-2026-57762?
The Simple URLs plugin for WordPress, up to version 1.5.1, contains a Cross Site Scripting (XSS) vulnerability that could allow unauthorized users to inject malicious scripts into web pages. This flaw poses a significant risk as it may be exploited to execute arbitrary JavaScript in the context of users visiting affected sites, potentially compromising user data and site integrity. Administrators are urged to apply available patches and updates to mitigate this security risk.
Affected Version(s)
Simple URLs <= 151