CVE-2024-12323
CVE-2024-12323 affects the turboSMTP WordPress plugin (all versions up to 4.6) with a Reflected Cross-Site Scripting via the page parameter caused by insufficient input sanitization and output escaping. Unauthenticated attackers could inject scripts into pages executed when a logged-in user is tr...