CVE-2024-11386
CVE-2024-11386 affects the GatorMail SmartForms WordPress plugin (versions up to and including 1.1.0). It allows Stored Cross-Site Scripting via the gatormailsmartform shortcode due to insufficient input sanitization/output escaping. Exploitation requires at least contributor-level authentication...