CVE-2024-3648
CVE-2024-3648 (ShareThis Share Buttons for WordPress) is a Stored XSS vulnerability in the sharethis-inline-button shortcode, affecting all versions up to 2.3.0. The issue allows authenticated users with contributor+ privileges to inject scripts that run when users visit injected pages. Wordfence...