CVE-2024-43155
CVE-2024-43155 is an authenticated Stored XSS vulnerability in PickPlugins ComboBlocks, affecting versions up to 2.2.86. Exploitation requires a Contributor+ privilege and malicious input is stored during web page generation. The issue is publicly reported (Wordfence/WordPress vulnerability data)...