CVE-2022-4706
CVE-2022-4706 affects the Genesis Columns Advanced WordPress plugin prior to 2.0.4. The issue arises from inadequate validation/escaping of shortcode attributes before output, allowing a low-privilege user (Contributor) to perform Stored XSS that could affect admins. Exploitation details are illu...