CVE-2026-9022 | dkjensen Splide Carousel Block Plugin up to 1.7.1 on WordPress Block Attribute cross site scripting

A vulnerability identified as problematic has been detected in dkjensen Splide Carousel Block Plugin up to 1.7.1 on WordPress. This affects an unknown function of the component Block Attribute Handler. This manipulation causes cross site scripting.

This vulnerability is tracked as CVE-2026-9022. The attack is possible to be carried out remotely. No exploit exists.

You should upgrade the affected component.VulDB Recent EntriesRead More