Vulnerabilities > Wpvivid

DATE CVE VULNERABILITY TITLE RISK
2022-04-11 CVE-2022-0531 Unspecified vulnerability in Wpvivid Migration, Backup, Staging
The Migration, Backup, Staging WordPress plugin before 0.9.70 does not sanitise and escape the sub_page parameter before outputting it back in the page, leading to a reflected Cross-Site Scripting
network
low complexity
wpvivid
6.1
2022-02-28 CVE-2021-24994 Unspecified vulnerability in Wpvivid Migration, Backup, Staging
The Migration, Backup, Staging WordPress plugin before 0.9.69 does not have authorisation when adding remote storages, and does not sanitise as well as escape a parameter from such unauthenticated requests before outputting it in admin page, leading to a Stored Cross-Site Scripting issue
network
low complexity
wpvivid
6.1