CVE-2026-2594 | inc2734 Smart Custom Fields Plugin up to 5.0.7 on WordPress Image Attachment Titles cross site scripting

SecurityVulns

A vulnerability marked as problematic has been reported in inc2734 Smart Custom Fields Plugin up to 5.0.7 on WordPress. This affects an unknown part of the component Image Attachment Titles. The manipulation leads to cross site scripting.

This vulnerability is listed as CVE-2026-2594. The attack may be initiated remotely. There is no available exploit.VulDB Recent EntriesRead More