CVE-2024-8492 Information

Description

The Hustle WordPress plugin through 7.8.5 does not sanitise and escape some of its settings which could allow high privilege users such as editors to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed

Reference

https://wpscan.com/vulnerability/c7437eba-8e91-4fcc-82a3-ff8908b36877/