CVE-2023-0075
CVE-2023-0075 affects the Amazon JS WordPress plugin, versions 0.10 and earlier. The vuln stems from not validating/escaping certain shortcode attributes, allowing stored XSS when rendered on a page/post where the shortcode is embedded. Impact: attackers with contributor role or higher can execut...