CVE-2023-1019
CVE-2023-1019 affects the WordPress plugin Help Desk WP up to version 1.2.0. The vulnerability is a stored XSS caused by insufficient sanitization/escaping of certain parameters, which could allow users with a role as low as Editor to execute scripts. Public disclosures (Wordfence/RH/PRION/etc.) ...