CVE-2026-4011 | dgwyer Power Charts Plugin up to 0.1.0 on WordPress Shortcode pc_shortcode ID cross site scripting

A vulnerability described as problematic has been identified in dgwyer Power Charts Plugin up to 0.1.0 on WordPress. This affects the function pc_shortcode of the component Shortcode Handler. The manipulation of the argument ID results in cross site scripting.

This vulnerability is cataloged as CVE-2026-4011. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More