CVE-2026-3017 | shapedplugin Smart Post Show Plugin up to 3.0.12 on WordPress Shortcode import_shortcodes deserialization

A vulnerability was found in shapedplugin Smart Post Show Plugin up to 3.0.12 on WordPress. It has been rated as problematic. Affected by this issue is the function import_shortcodes of the component Shortcode Handler. This manipulation causes deserialization.

The identification of this vulnerability is CVE-2026-3017. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More