{"vulnerability": "cve-2023-0066", "sightings": [{"uuid": "5909aa80-5949-40be-8bf5-6aefb6328c9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-0066", "type": "seen", "source": "Telegram/ThO7cBZa14rpNwjqN2yN44Is7X2R1xWe4vqykDQ_0tHu9jmG", "content": "", "creation_timestamp": "2025-03-02T11:44:20.000000Z"}, {"uuid": "4205fe76-ecd7-45c0-a090-4bc5f036f0bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-0066", "type": "seen", "source": "https://t.me/cibsecurity/59914", "content": "\u203c CVE-2023-0066 \u203c\n\nThe Companion Sitemap Generator WordPress plugin through 4.5.1.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-13T19:23:16.000000Z"}]}