CVE-2023-5073
CVE-2023-5073 concerns the WordPress plugin “iframe forms.” The vulnerability is a Stored Cross‑Site Scripting (XSS) via the iframe shortcode in versions up to and including 1.0, caused by insufficient input sanitization and output escaping. An attacker with Contributor level or higher authentica...