2 matches found
CVE-2023-46628
CVE-2023-46628 affects WP Word Count
CVE-2022-3408
CVE-2022-3408 affects the WP Word Count WordPress plugin (versions ≤ 3.2.3). The vulnerability arises from not sanitising/escaping certain settings, enabling stored Cross-Site Scripting (XSS) by high-privilege users (e.g., admins) even when unfiltered_html is disallowed. Documents consistently de...