CVE-2022-4747
Summary: CVE-2022-4747 affects the WordPress plugin “Post Category Image With Grid and Slider” (pre-1.4.8). The issue is that shortcode attributes are not validated/escaped before being output, enabling stored XSS. Exploitation requires user interaction (UI:Required) and low privileges (Contribut...