2023-07-10 12:40:29
WPScan
PUBLISHED
The Simple Iframe WordPress plugin before 1.2.0 does not properly validate one of its WordPress block attributes content, which may allow users whose role is at least that of a contributor to conduct Stored Cross-Site Scripting attacks.