CVE-2023-48780
CVE-2023-48780 affects the WordPress plugin WP Catalogue (vulnerable: ≤1.7.6). The issue is an authenticated Stored Cross-Site Scripting (XSS) vulnerability via shortcode handling, allowing a user with Contributor+ privileges to inject malicious scripts. Public patching status is not provided in ...