{"uuid": "2ca9a05a-8425-442b-88bc-4fa9a4e5e0b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-5513", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116746932965862347", "content": "CVE-2026-5513: HIGH severity XSS in Bookly (<=27.2) via 'bookly-customer-full-name' cookie. Exploitable if 'Remember personal info in cookies' is enabled (disabled by default). No patch yet \u2014 disable vulnerable setting! https://radar.offseq.com/threat/cve-2026-5513-cwe-79-improper-neutralization-of-in-d213c0f7 #OffSeq #XSS #WordPress #Security", "creation_timestamp": "2026-06-14T06:01:57.464821Z"}