WordPress Simple Divi Shortcode Stored XSS via 'id' Attribute (CVE-2026-9714) Advisory

www.wordfence.com 2026-06-01查看中文 →

Security AdvisoryCVE-2026-9714MediumWordPress

Affected:

simple-divi-shortcode <= 1.2

Fixed in:

1.2.1

Referenced CVEs: CVE-2026-9714 · 6.4

文章内图片已隐藏以节省流量 · Upgrade to Pro to view images & offline archive

This content was auto-fetched from www.wordfence.com, cleaned by our LLM pipeline, and translated to English. View original.

More from this source

Rank Math SEO Missing Authorization to Unauthenticated Homepage Settings Modification (CVE-2025-12714) 2026-06-01 PeachPay WordPress Plugin CSRF Vulnerability Allowing Stripe Unlink (CVE-2026-9618) 2026-06-01 Spectra Gutenberg Blocks CVE-2026-7465: Authenticated Remote Code Execution via Arbitrary PHP Function Call 2026-06-01 GEO my WP <= 4.5.5 Unauthenticated SQL Injection (CVE-2026-9757) 2026-06-01 Equalize Digital Accessibility Checker <=1.42.0 Missing Authorization Vulnerability (CVE-2026-9015) 2026-05-30

Offline Archive

Offline screenshot & PDF are Pro-exclusive