CVE-2024-2256
CVE-2024-2256 pertains to the WordPress oik plugin and is a stored XSS via shortcode attributes bw_contact_button and bw_button in versions up to and including 4.10.0. The vulnerability arises from insufficient input sanitization and output escaping on user-supplied attributes, enabling authentic...