CVE-2023-47185

Name of the Vulnerable Software and Affected Versions wpDiscuz plugin versions 7.6.11 and earlier

Description The issue is related to an Unauth. Stored Cross-Site Scripting (XSS) vulnerability. This type of vulnerability allows an attacker to inject malicious scripts into a website, which can then be executed by other users, potentially leading to unauthorized actions or data theft.

Recommendations For wpDiscuz plugin versions 7.6.11 and earlier, update to a version later than 7.6.11 to resolve the issue. As a temporary workaround, consider restricting access to the comments feature in the wpDiscuz plugin until a patch is available.