CVE-2023-5639
CVE-2023-5639 affects the WordPress plugin Team Showcase. The vulnerability is a Stored XSS via the plugin shortcode tmfshortcode in all versions up to 2.1 due to insufficient input sanitization and output escaping on user attributes. Exploitation requires an authenticated attacker with contribut...