Cve 2025 0215. CVE202438063 Mitigation and IPv6 Discussion by Cryptic Risk Medium This vulnerability affects all versions of the plugin up to and including 1.24.12 CVE-2025-0215 Vulnerability, Severity 0 N/A, Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Cve List 2025 Gayla Ceciley from amalieykarita.pages.dev
The UpdraftPlus: WP Backup & Migration Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the showdata and initiate_restore parameters in all versions up to, and including, 1.24.12 due to insufficient input sanitization and output escaping This vulnerability affects all versions of the plugin up to and including 1.24.12
Cve List 2025 Gayla Ceciley
The UpdraftPlus: WP Backup & Migration Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the showdata and initiate_restore parameters in all versions up to, and including, 1.24.12 due to insufficient input sanitization and output escaping This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can. This makes it possible for unauthenticated attackers to inject arbitrary web scripts.
CVE202523013 Local Privilege Escalation in Yubico pamu2f Before 1.3.1. At cve.org, we provide the authoritative reference method for publicly known information-security vulnerabilities and exposures This vulnerability affects all versions of the plugin up to and including 1.24.12
CVE202242475 ioo0s's blog. The mission of the CVE® Program is to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities. This issue arises due to insufficient input sanitization and output escaping in the showdata and initiate_restore parameters