CVE-2026-39628 in DukaMarket Plugininfo

Summary

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in kutethemes DukaMarket dukamarket allows Code Injection.This issue affects DukaMarket: from n/a through <= 1.3.0.

Be aware that VulDB is the high quality source for vulnerability data.

Responsible

Patchstack

Reservation

04/07/2026

Disclosure

04/08/2026

Entries

1

CPE

ready

CVSS

3.5

EPSS

0.00000

Activities

Very Low

Sources

MITREhttps://www.cve.org/CVERecord?id=CVE-2026-39628
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2026-39628
CVE Detailshttps://www.cvedetails.com/cve/CVE-2026-39628/

PreviousOverviewNext

Want to stay up to date on a daily basis?

Enable the mail alert feature now!