CVE-2026-1646 | Advance Block Extend Plugin up to 1.0.4 on WordPress Block Attribute TitleColor cross site scripting

A vulnerability identified as problematic has been detected in Advance Block Extend Plugin up to 1.0.4 on WordPress. Affected by this vulnerability is an unknown functionality of the component Block Attribute Handler. This manipulation of the argument TitleColor causes cross site scripting.

This vulnerability is handled as CVE-2026-1646. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More