CVE-2020-36656 Information

Description

The Spectra WordPress plugin before 1.15.0 does not sanitize user input as it reaches its style HTML attribute allowing contributors to conduct stored XSS attacks via the plugin’s Gutenberg blocks.

Reference

https://wpscan.com/vulnerability/10f7e892-7a91-4292-b03e-6ad75756488b