2024.0

DATE	CVE	VULNERABILITY TITLE	RISK
2024-02-29	CVE-2024-1341	Cross-site Scripting vulnerability in Tinywebgallery Advanced Iframe The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's advanced_iframe shortcode in all versions up to, and including, 2024.1 due to the plugin allowing users to include JS files from external sources through the additional_js attribute. network low complexity tinywebgallery CWE-79	5.4