CVE-2022-1435
CVE-2022-1435 affects the WordPress WPCargo Track & Trace plugin prior to 6.9.5. The vulnerability arises from insufficient sanitization/escaping of certain plugin settings, which could allow an authenticated high-privilege user (e.g., admin) to perform Cross-Site Scripting (XSS) attacks even whe...