Won Joon Hwang

**Name of the Vulnerable Software and Affected Versions** Phan Chuong IP Metaboxes plugin versions prior to 2.1.1 **Description** The issue is related to a Stored Cross-Site Scripting (XSS) vulnerability that requires authentication with admin+ privileges. **Recommendations** For Phan Chuong IP Metaboxes plugin versions prior to 2.1.1, update to a version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Phan Chuong IP Metaboxes plugin versions <= 2.1.1 **Description** The issue is related to an Unauth. Reflected Cross-Site Scripting (XSS) vulnerability. This means that an attacker can inject malicious scripts into a website, potentially allowing them to steal user data or take control of the user's session. **Recommendations** For Phan Chuong IP Metaboxes plugin versions <= 2.1.1, update to a version higher than 2.1.1 to resolve the issue.