CVE-2024-13223

Name of the Vulnerable Software and Affected Versions Tabulate WordPress plugin versions 2.10.3 and earlier

Description The issue arises from the plugin not sanitizing and escaping some parameters before outputting them back in the page. This leads to a Reflected Cross-Site Scripting that could be used against high privilege users, such as administrators.

Recommendations For Tabulate WordPress plugin versions 2.10.3 and earlier, update to a version later than 2.10.3 to resolve the issue. As a temporary workaround, consider restricting access to the plugin's functionality to minimize the risk of exploitation.