CVE-2022-46855
CVE-2022-46855 is a Stored Cross-Site Scripting (XSS) in the WP Darko Responsive Pricing Table plugin, affected versions ≤ 5.1.6. The root cause is insufficient sanitization/escaping of the fields.title parameter, which can allow a contributor (and higher) to inject JavaScript. The vulnerability’...