EIP-2026-114345
PRE-CVEWordPress Theme Pinboard - 'tab' Cross-Site Scripting
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-114345. PoCs published by Henrique Montenegro.
AI-analyzed exploit summary The exploit demonstrates a reflected XSS vulnerability in the Pinboard WordPress theme by injecting a malicious script via the 'tab' parameter in the theme options page. The payload executes arbitrary JavaScript in the context of the affected site, allowing cookie theft or other client-side attacks.
Description
WordPress Theme Pinboard - 'tab' Cross-Site Scripting
Exploits (1)
The exploit demonstrates a reflected XSS vulnerability in the Pinboard WordPress theme by injecting a malicious script via the 'tab' parameter in the theme options page. The payload executes arbitrary JavaScript in the context of the affected site, allowing cookie theft or other client-side attacks.