CVE-2022-3128
The CVE-2022-3128 entry concerns the Donation Thermometer WordPress plugin (versions before 2.1.3). The vulnerability arises because certain plugin settings are not properly sanitized/escaped, enabling Stored Cross-Site Scripting (XSS) by highly privileged users (e.g., administrators), even when ...