CVE-2026-6041 | mixer2 Buzz Comments Plugin up to 0.9.4 on WordPress Setting buzz_comments_avatar_image cross site scripting

A vulnerability identified as problematic has been detected in mixer2 Buzz Comments Plugin up to 0.9.4 on WordPress. The affected element is the function buzz_comments_avatar_image of the component Setting Handler. Performing a manipulation results in cross site scripting.

This vulnerability is known as CVE-2026-6041. Remote exploitation of the attack is possible. No exploit is available.VulDB Recent EntriesRead More