CVE-2024-1278
CVE-2024-1278 affects the WordPress plugin “Easy Social Feed – Social Photos Gallery – Post Feed – Like Box.” The vulnerability is Stored XSS through the plugin’s shortcodes, specifically the efb_likebox shortcode, in all versions up to 6.5.4. The root cause is insufficient input sanitization and...