CVE-2023-23676
CVE-2023-23676 affects the WordPress plugin File Gallery (author Bruno 'Aesqe' Babic). Vulnerable until version ≤ 1.8.5.3 due to a Stored Cross-Site Scripting (XSS) flaw in the plugin’s file_gallery_shortcode, enabling malicious payloads to be stored and later executed in other users’ sessions. T...