CVE-2024-8965
CVE-2024-8965 details (WordPress Absolute Reviews plugin): All versions up to 1.1.3 are vulnerable to a Stored DOM-based Cross-Site Scripting (XSS) via the Name field of a custom post criterion. Exploitation requires at least Contributor–level authentication and above, enabling injection of scrip...