CVE-2024-12768
CVE-2024-12768 affects the WordPress plugin “Responsive iframe” (versions ≤ 1.2.0). The issue is a Stored Cross‑Site Scripting vulnerability where unvalidated block options are echoed back in pages/posts when the block is embedded, enabling attackers with the Contributor role or higher to inject ...