CVE-2023-5433
CVE-2023-5433 affects the WordPress Message ticker plugin up to version 9.2. The root cause is insufficient escaping of user-supplied shortcode parameters and inadequate preparation of the SQL query, enabling authenticated attackers with subscriber-level or higher permissions to inject additional...