CVE-2022-1759
The CVE pertains to the WordPress plugin RB Internal Links (versions up to 2.0.16). The issue is a CSRF deficiency when updating plugin settings, enabling a logged-in attacker to induce an admin to modify settings, and it also enables Stored Cross-Site Scripting due to insufficient sanitisation/e...