Vulnerability — CVE-2023-1069

CVE-2023-1069

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2023-1069
Description:: The Complianz WordPress plugin before 6.4.2, Complianz Premium WordPress plugin before 6.4.2 do not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks
Last updated date:: 03/31/2023

Type:: exploit
Confidence:: HIGH
Date of publishing:: 03/31/2023
Reference url to background: https://wpscan.com/vulnerability/caacc50c-822e-46e9-bc0b-681349fd0dda