A vulnerability classified as problematic was found in theyeti WowPress Plugin up to 1.0.0 on WordPress. This affects the function wowpress of the component Shortcode Handler . The manipulation results in cross site scripting. This vulnerability is cataloged as CVE-2026-5508 . The attack may be launched remotely. There is no exploit available.