CVE-2023-5005
CVE-2023-5005 affects the Autocomplete Location field for the Contact Form 7 WordPress plugin (and the Pro variant) where certain settings were not properly sanitized/escaped. This could allow high-privilege users (e.g., administrators) to perform a Stored Cross-Site Scripting (XSS) attack, even ...