Description The plugin is vulnerable to Stored Cross-Site Scripting via the code editor due to insufficient input sanitization and output escaping, allowing authenticated attackers, with contributor access or higher, to perform Stored XSS attacks
CPE | Name | Operator | Version |
---|---|---|---|
eq | 1.58.2 |