VYPR

GS Portfolio for Envato

by WordPress

CVEs (1)

  • CVE-2023-0559MedFeb 21, 2023
    risk 0.35cvss 5.4epss 0.00

    The GS Portfolio for Envato WordPress plugin before 1.4.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embedded, which could allow users with the contributor role and above to perform Stored…