CVE-2026-57651MEDIUM NVDCVSS Score 6.5Severity MEDIUMPublished Jun 26, 2026Vendor unknownDescriptionContributor Cross Site Scripting (XSS) in Ghost Kit <= 3.6.0 versions.Referenceshttps://patchstack.com/database/wordpress/plugin/ghostkit/vulnerability/wordpress-ghost-kit-plugin-3-6-0-cross-site-scripting-xss-vulnerability?_s_id=cve