CVE-2026-1986 | bakkbone FloristPress for Woo Plugin up to 7.8.2 on WordPress Parameter noresults cross site scripting

A vulnerability, which was classified as problematic, was found in bakkbone FloristPress for Woo Plugin up to 7.8.2 on WordPress. This issue affects some unknown processing of the component Parameter Handler. The manipulation of the argument noresults results in cross site scripting.

This vulnerability is cataloged as CVE-2026-1986. The attack may be launched remotely. There is no exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More