CVE-2023-5167 Information

Description

The User Activity Log Pro WordPress plugin before 2.3.4 does not properly escape recorded User-Agents in the user activity logs dashboard which may allow visitors to conduct Stored Cross-Site Scripting attacks.

Reference

https://wpscan.com/vulnerability/78ea6fe0-5fac-4923-949c-023c85fe2437