A vulnerability labeled as problematic has been found in CleanTalk Anti-Spam Plugin up to 6.78 on WordPress. Affected by this vulnerability is an unknown functionality of the component Shortcode Handler . The manipulation results in cross site scripting. This vulnerability was named CVE-2026-8071 . The attack may be performed from remote. There is no available exploit. The affected component should be upgraded.