CVE-2026-39482

Name of the Vulnerable Software and Affected Versions PublishPress Post Expirator versions through 4.9.4

Description The software contains a flaw due to improper neutralization of input during web page generation, leading to a DOM-Based Cross-Site Scripting (XSS) condition. This allows for potential malicious code execution within the context of a user's browser.

Recommendations Update to a version newer than 4.9.4