CVE-2026-1055 | TalkJS Plugin up to 0.1.15 on WordPress Setting welcomeMessage cross site scripting

A vulnerability classified as problematic has been found in TalkJS Plugin up to 0.1.15 on WordPress. The impacted element is an unknown function of the component Setting Handler. This manipulation of the argument welcomeMessage causes cross site scripting.

The identification of this vulnerability is CVE-2026-1055. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More