OffSequence
CVE-2026-9677: HIGH severity stored XSS in Shariff for WordPress (<=1.0.11). Unsanitized shariff_infourl allows high privilege users to inject persistent scripts — risk increases in multisite setups. Restrict admin access. https://radar.offseq.com/threat/cve-2026-9677-cwe-79-cross-site-scripting-xss-in-s-101a28f25d1f6f06 #OffSeq #WordPress #XSS #Infosec
Jun 27 at 7:30amWeb