CVE-2024-5708
CVE-2024-5708 affects WPBakery Visual Composer (WordPress) up to version 7.7. Root cause: insufficient input sanitization and output escaping in the link parameter, enabling stored XSS by authenticated users with Author-level access. Impact: arbitrary script execution when pages with injected con...