PT-2024-39712 · WordPress · Ditty
Name of the Vulnerable Software and Affected Versions: The Ditty WordPress plugin versions prior to 3.1.47 Description: The issue allows high privilege users, such as authors, to perform Stored Cross-Site Scripting attacks due to the plugin's failure to sanitise and escape some of its settings...