CVE-2023-48300
CVE-2023-48300 affects the WordPress Embed Privacy plugin (versions ≤ 1.8.0). It enables a Stored Cross‑Site Scripting (XSS) via the shortcode embed_privacy_opt_out, due to insufficient input sanitization and output escaping on user‑supplied attributes. Authenticated attackers with contributor le...