CVE-2026-6404 | simonholliday Anomify AI Plugin up to 0.3.6 on WordPress setting sanitize_text_field anomify_api_key cross site scripting

A vulnerability identified as problematic has been detected in simonholliday Anomify AI Plugin up to 0.3.6 on WordPress. Affected by this vulnerability is the function sanitize_text_field of the component setting Handler. The manipulation of the argument anomify_api_key leads to cross site scripting.

This vulnerability is listed as CVE-2026-6404. The attack may be initiated remotely. There is no available exploit.

You should upgrade the affected component.VulDB Recent EntriesRead More