CVE-2022-4029
CVE-2022-4029 affects the WordPress Simple:Press plugin up to version 6.8. The vulnerability is a Reflected Cross-Site Scripting via the cookie value named like sforum_[md5 hash of the WordPress URL], caused by insufficient input sanitization and output escaping. This enables unauthenticated atta...