CVE-2022-0531

Summary

The Migration, Backup, Staging WordPress plugin before 0.9.70 does not sanitise and escape the sub_page parameter before outputting it back in the page, leading to a reflected Cross-Site Scripting

Affected Software

VendorProductVersion RangeStatus
UnknownMigration, Backup, Staging – WPvivid0.9.70 < 0.9.70affected

Weaknesses

  • CWE-79: CWE-79 Cross-site Scripting (XSS)

ADP Enrichment

CVE Program Container

Additional References

References