5.12.9

DATE	CVE	VULNERABILITY TITLE	RISK
2023-11-28	CVE-2023-6226	Authorization Bypass Through User-Controlled Key vulnerability in Getshortcodes Shortcodes Ultimate The WP Shortcodes Plugin — Shortcodes Ultimate plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.13.3 via the su_meta shortcode due to missing validation on the user controlled keys 'key' and 'post_id'. network low complexity getshortcodes CWE-639	4.3