CVE-2022-4010
The CVE-2022-4010 entry affects the Image Hover Effects WordPress plugin (versions prior to 5.5). The issue is that the plugin does not sanitize and escape certain settings, enabling Stored Cross-Site Scripting by high-privilege users (e.g., admins) even when unfiltered_html is disallowed (includ...