CVE-2023-23833
CVE-2023-23833 describes an authenticated Cross-Site Scripting (XSS) vulnerability in the WordPress Drop Shadow Boxes plugin, affecting versions ≤ 1.7.10. The issue stems from improper escaping of input parameters, enabling a contributor-or-higher user to inject scripts into a site. Reported impa...