CVE-2023-0520
CVE-2023-0520 corresponds to a Stored XSS in the RapidExpCart WordPress plugin up to version 1.0. The vulnerability arises because the url parameter in the rapidexpcart endpoint is not sanitized/escaped before storage and page output, enabling an attacker to inject script that can be executed in ...