PT-2023-14668 · WordPress · Mashshare
Name of the Vulnerable Software and Affected Versions: MashShare WordPress plugin versions prior to 3.8.7 Description: The issue concerns a lack of validation and escaping of certain shortcode attributes, which can lead to Stored Cross-Site Scripting attacks. Users with a role as low as contribut...