CVE-2019-17071

The CVE-2019-17071 entry concerns the WordPress Client Dash plugin (version 2.1.4) which is vulnerable to Cross-Site Scripting (XSS). Connected documents detail that this vulnerability is a stored XSS via admin settings, exploitable by authenticated attackers with administrator-level privileges (...

CVE-2023-49165

CVE-2023-49165 affects the WordPress plugin Client Dash (Real Big Plugins) up to version 2.2.1. The issue is an authenticated Stored XSS vulnerability arising from improper input neutralization during web page generation. Exploitation requires at least Administrator privileges, and the vulnerabil...