CVE-2024-1872 | Button Plugin up to 1.1.28 on WordPress button_shortcode code injection

CVE-2024-1872 | Button Plugin up to 1.1.28 on WordPress button_shortcode code injection

A vulnerability was found in Button Plugin up to 1.1.28 on WordPress. It has been declared as critical. Affected by this vulnerability is the function button_shortcode. The manipulation leads to code injection. This vulnerability is known as CVE-2024-1872. The attack can be launched remotely. There is no exploit available.