2 matches found
CVE-2023-51492
CVE-2023-51492 is a Stored Cross-Site Scripting (XSS) vulnerability in the If-So Dynamic Content Personalization WordPress plugin. The issue arises from improper input neutralization during web page generation, affecting the plugin’s input handling for authenticated users (Contributor+). Affected...
CVE-2024-5440
Affected software: WordPress plugin If-So Dynamic Content Personalization, versions prior to 1.8.0.3. Vulnerability: The plugin does not validate and escape certain shortcode attributes before outputting them on the page/post where the shortcode is embedded, enabling Stored XSS if exploited. Impa...