CVE-2023-0270
The CVE-2023-0270 entry concerns the YaMaps for WordPress Plugin before 0.6.26. The vulnerability is Stored XSS caused by the plugin not validating/escaping certain shortcode attributes before output, enabling users with the contributor role or higher to inject malicious scripts when the shortcod...