CVE-2024-13621
CVE-2024-13621 affects the WordPress plugin “The GDPR Framework By Data443” (versions prior to 2.2.0). The issue is insufficient sanitization and escaping of certain settings, which could permit stored XSS by high-privilege users (e.g., admins) even when unfiltered_html is disallowed (such as in ...