CVE-2023-52178
CVE-2023-52178 affects the WP Affiliate Disclosure plugin for WordPress. Vulnerable in versions up to 1.2.7, it allows an authenticated Contributor+ to trigger a stored XSS via the $id parameter in the plugin’s stored content. Public references in the provided documents confirm the vulnerability ...