CVE-2023-5210

Name of the Vulnerable Software and Affected Versions AMP+ Plus WordPress plugin versions 3.0 and earlier

Description The issue is related to a Reflected Cross-Site Scripting problem. It occurs because a parameter is not properly sanitised and escaped before being outputted back in the page. This could be used against high privilege users such as admin.

Recommendations For AMP+ Plus WordPress plugin versions 3.0 and earlier, update to a version later than 3.0 to resolve the issue. As a temporary workaround, consider restricting access to the plugin to minimize the risk of exploitation.