Loading market data...
JN
.
Home
About
Projects
Blog
App
CVEs
Contact
← Back to CVE feed
CVE-2026-41556
MEDIUM
CVSS 6.5
View on NVD ↗
Description
Subscriber Cross Site Scripting (XSS) in ProfilePress <= 4.16.13 versions.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
References
https://patchstack.com/database/wordpress/plugin/wp-user-avatar/vulnerability/wordpress-profilepress-plugin-4-16-13-cross-site-scripting-xss-vulnerability?_s_id=cve
Published: Jun 15, 2026 21:16 UTC
Modified: Jun 15, 2026 21:24 UTC