CVE-2024-49265
CVE-2024-49265 is a stored XSS in the Booking.com Banner Creator WordPress plugin (versions up to 1.4.6). The vulnerability arises from improper input neutralization during web page generation, enabling stored cross-site scripting where attacker-supplied input can persist and execute in other use...