PT-2024-17306 · WordPress · Buk

Name of the Vulnerable Software and Affected Versions: Buk for WordPress plugin versions up to, and including, 1.0.7 Description: The issue is related to Stored Cross-Site Scripting via the plugin's 'buk' shortcode due to insufficient input sanitization and output escaping on user-supplied...

WordPress Buk for WordPress plugin <= 1.0.7 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by zakaria in WordPress Plugin Buk versions = 1.0.7...