CVE-2024-3048
CVE-2024-3048 affects the Bannerlid WordPress plugin (versions up to 1.1.0). The vulnerability is Reflected XSS caused by not escaping generated URLs before outputting them in HTML attributes, enabling abuse against high-privilege users (e.g., administrators). Public advisories in connected docs ...