Description
WordPress before 5.2.3 allows XSS in shortcode previews.
Remediation
References
Related Vulnerabilities
WordPress Plugin MF Gig Calendar 'page_id' Parameter Cross-Site Scripting (0.9.4.1)
Ruby on Rails Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-6417)
WordPress Plugin Clean Login Cross-Site Scripting (1.12.6.3)
WordPress Plugin UpdraftPlus WordPress Backup Security Bypass (1.22.1)