CVE-2026-8707 | nsthemes NS Product Icon Badge Plugin up to 1.2.4 on WordPress PHP_SELF cross site scripting

A vulnerability was found in nsthemes NS Product Icon Badge Plugin up to 1.2.4 on WordPress. It has been classified as problematic. Affected is an unknown function. This manipulation of the argument PHP_SELF causes cross site scripting.

This vulnerability is handled as CVE-2026-8707. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More