CVE-2023-49747
CVE-2023-49747 refers to a Stored XSS in the WordPress plugin Guest Author (WebFactory Ltd) up to version 2.3. The vulnerability arises from improper neutralization of input during web page generation (author name), enabling injected scripts when users view pages. Public reports from Red Hat and ...