A vulnerability identified as problematic has been detected in Email Address Encoder Plugin up to 1.0.24 on WordPress. The impacted element is an unknown function. Performing a manipulation results in cross site scripting. This vulnerability is cataloged as CVE-2026-5305 . It is possible to initiate the attack remotely. There is no exploit available. You should upgrade the affected component.