A vulnerability classified as problematic has been found in burlingtonbytes WP Blockade Plugin up to 0.9.14 on WordPress. Impacted is the function render_shortcode_preview of the component Endpoint . This manipulation of the argument shortcode causes cross site scripting. This vulnerability is handled as CVE-2026-3481 . The attack can be initiated remotely. There is not any exploit available. It is recommended to upgrade the affected component.