Tittle: WordPress Plugin WP Brutal AI < 2.06 - Admin+ Stored XSS References: CVE-2023-2606 Author: Taurus Omar Description: The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup). Affects Plugins: WP Brutal AI - Fixed in version 2.06 Proof of Concept: Visit the following path: 1. Go to Settings » WP Brutal AI 2. Add new campaign 4. Add name payload: "><iframe src="<svg onload=alert(4);>"> 3. Save the changes to trigger XSS. Classification: Type XSS OWASP top 10 A7: Cross-Site Scripting (XSS) CWE-79 wpScan: https://wpscan.com/vulnerability/62deb3ed-a7e4-4cdc-a615-cad2ec2e1e8f