CVE-2024-8085
CVE-2024-8085 – WordPond (WordPress) vulnerability details : The PeoplePond WordPress plugin versions ≤ 1.1.9 lack CSRF checks in several areas and miss sanitization/escaping, enabling a logged-in admin to add a Stored XSS payload via a CSRF attack. The publicly provided sources corroborate the v...