A vulnerability was found in WCFM Marketplace Plugin up to 3.6.2 on WordPress. It has been classified as problematic. This affects an unknown part of the component Shortcode Handler. The manipulation leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2023-4960. It is possible to initiate the attack remotely. There is no exploit available.