CVE-2026-10531

UNKNOWN 0.0

AI Share & Summarize < 2.0.4 - Contributor+ Stored XSS via title_style Shortcode Attribute

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

The AI Share & Summarize WordPress plugin before 2.0.4 does not sanitise and escape some of its shortcode attributes before outputting them in a page, allowing users with the Contributor role and above to perform Stored Cross-Site Scripting attacks.

Vendor	unknown
Product	ai share & summarize
Published	Jun 24, 2026

Stay Ahead of the Next One

Get instant alerts for unknown ai share & summarize

Be the first to know when new unknown vulnerabilities affecting unknown ai share & summarize are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Unknown / AI Share & Summarize

0 < 2.0.4

References

NVD ↗ CVE.org ↗ EPSS Data ↗

wpscan.com: https://wpscan.com/vulnerability/ebc956c2-42f4-495f-a37e-f83ed156af08/

Credits

Haitam Lazaar WPScan