Vulnerabilities > Wpvivid
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-04-11 | CVE-2022-0531 | Unspecified vulnerability in Wpvivid Migration, Backup, Staging The Migration, Backup, Staging WordPress plugin before 0.9.70 does not sanitise and escape the sub_page parameter before outputting it back in the page, leading to a reflected Cross-Site Scripting | 6.1 |
2022-02-28 | CVE-2021-24994 | Unspecified vulnerability in Wpvivid Migration, Backup, Staging The Migration, Backup, Staging WordPress plugin before 0.9.69 does not have authorisation when adding remote storages, and does not sanitise as well as escape a parameter from such unauthenticated requests before outputting it in admin page, leading to a Stored Cross-Site Scripting issue | 6.1 |