CVE-2026-8891 | bitform BitForm Plugin up to 1.1.0 on WordPress Shortcode Shortcode::shortcode style cross site scripting

A vulnerability described as problematic has been identified in bitform BitForm Plugin up to 1.1.0 on WordPress. Affected by this issue is the function Shortcode::shortcode of the component Shortcode Handler. The manipulation of the argument style results in cross site scripting.

This vulnerability is identified as CVE-2026-8891. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More