CVE-2026-8607 | saadiqbal Points Management System for Gamification up to 3.1 on WordPress Shortcode wrap cross site scripting

A vulnerability, which was classified as problematic, has been found in saadiqbal Points Management System for Gamification, Ranks, Badges and and Loyalty Rewards Program Plugin up to 3.1 on WordPress. This affects the function wrap of the component Shortcode Handler. Performing a manipulation results in cross site scripting.

This vulnerability is identified as CVE-2026-8607. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More