WordPress Betheme plugin <= 28.1.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'page_title' vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via 'pagetitle' vulnerability discovered by Zbigniew Piotrak in WordPress Theme Betheme versions = 28.1.6...