Medium 6.4 Unfixed Closed 2025-09-11≤ 2.0.4 WordPress azurecurve BBCode Plugin <= 2.0.4 is vulnerable to Cross Site Scripting (XSS) PatchstackEUVDWordfenceCVE