CVE-2022-03801
Concrete details found: CVE-2022-0380 affects the Fotobook WordPress plugin (versions up to 3.2.3). The vulnerability is a Reflected Cross‑Site Scripting (XSS) due to insufficient escaping and the use of $_SERVER['PHP_SELF'] in the options-fotobook.php file, enabling injection of arbitrary script...