CVE-2023-22702

Name of the Vulnerable Software and Affected Versions WPMobile.App versions <= 11.13

Description A Cross-Site Scripting (XSS) vulnerability has been discovered in the WPMobile.App plugin for Android and iOS mobile applications, affecting versions up to and including 11.13. This issue allows for XSS attacks when authentication is set to contributor or higher.

Recommendations For versions <= 11.13, update to a version higher than 11.13 to resolve the issue. As a temporary workaround, consider restricting access to sensitive areas of the application to minimize the risk of exploitation.