CIRCLE WITH A DOT

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

🛡️ CVE-2026-7330: HIGH severity stored XSS in thedark Auto Affiliate Links (≤6.8.8) lets unauthenticated attackers inject scripts via AJAX endpoint.

1 Posts 1 Posters 0 Views

O This user is from outside of this forum
O This user is from outside of this forum
offseq@infosec.exchange

wrote last edited by

#1

️ CVE-2026-7330: HIGH severity stored XSS in thedark Auto Affiliate Links (≤6.8.8) lets unauthenticated attackers inject scripts via AJAX endpoint. WP admins at risk — update/disable plugin! https://radar.offseq.com/threat/cve-2026-7330-cwe-79-improper-neutralization-of-in-dc918ba5 #OffSeq #WordPress #Infosec #XSS
1 Reply Last reply
1
0
R relay@relay.infosec.exchange shared this topic

Log in to reply