CVE-2023-4390

Posted on 2023년 10월 31일2023년 11월 1일 by admin

CVE-2023-4390

The Popup box WordPress plugin before 3.7.2 does not sanitize and escape some Popup fields, which could allow high-privilege users such as an administrator to inject arbitrary web scripts even when the unfiltered_html capability is disallowed (for example in a multisite setup).

Source: CVE-2023-4390

답글 남기기 응답 취소