CVE-2023-41666

Name of the Vulnerable Software and Affected Versions Stockdio Stock Quotes List plugin versions <= 2.9.9

Description The issue is related to a Stored Cross-Site Scripting (XSS) vulnerability that affects the Stockdio Stock Quotes List plugin. This vulnerability requires authentication and is limited to users with contributor or higher permissions.

Recommendations For versions <= 2.9.9, update to a version higher than 2.9.9 to resolve the issue. As a temporary workaround, consider restricting access to the plugin for users with contributor permissions until a patch is available.