A vulnerability categorized as problematic has been discovered in weaverlancegmailcom jQuery Hover Footnotes Plugin up to 1.4 on WordPress. This affects the function wp_kses_post . The manipulation results in cross site scripting. This vulnerability is identified as CVE-2026-10738 . The attack can be executed remotely. There is not any exploit available.