CVE-2022-1028
The CVE-2022-1028 entry concerns the WordPress Security Firewall, Malware Scanner, Secure Login and Backup plugin prior to 4.2.1, which does not sanitize/escape certain settings. This allows malicious users with administrator privileges to store JavaScript, leading to stored Cross-Site Scripting ...