2 matches found
CVE-2023-5745
The Reusable Text Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'text-blocks' shortcode in versions up to, and including, 1.5.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers...
CVE-2023-5745
The CVE-2023-5745 entry corresponds to the WordPress plugin Reusable Text Blocks (versions up to and including 1.5.3). A stored XSS vulnerability exists in the text-blocks shortcode due to insufficient input sanitization and output escaping on user-supplied attributes. Impact is that authenticate...