Stored Cross Site Scripting in FluentSMTP plugin prior to 2.2.2.
The plugin has a functionality that allows the admin to view logs of all emails sent using wpmail function. No sanitization while rendering the email content leads to stored cross-site scripting.
FluentSMTP prior to 2.2.2
Reported On: 10th January 2023
Made Public On: NA (yet to be made public)
Fixed On: NA (yet to be fixed)