CVE ID :CVE-2026-42643
Published : April 29, 2026, 10:40 a.m. | 1 hour, 37 minutes ago
Description :Improper Neutralization of Input During Web Page Generation (‚Cross-site Scripting‘) vulnerability in StellarWP Image Widget image-widget allows Stored XSS.This issue affects Image Widget: from n/a through <= 4.4.11.
Severity: 5.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…