CVE-2023-0070
The CVE-2023-0070 entry concerns the ResponsiveVoice Text To Speech WordPress plugin (pre-1.7.7). Affected component: shortcode attribute handling; root cause: lack of validation/escaping of certain shortcode attributes before output. Impact: stored XSS possibility for users with the Contributor ...