Authenticated Persistent Cross-Site Scripting (XSS) Vulnerability in iubenda
Recently we detailed a privilege escalation vulnerability that had been in the WordPress plugin iubenda after seeing a hacker probing for the plugin. It turns out the hacker might have been targeting another vulnerability in the plugin, which had been fixed alongside that vulnerability.
…