CVE-2022-4472
The CVE-2022-4472 entry concerns the WordPress Simple Sitemap plugin prior to version 3.5.8. The issue is that shortcode attributes are not properly validated or escaped before being output, allowing Stored Cross-Site Scripting (XSS) from inputs provided by users with as little as Contributor pri...