CVE-2022-1995
CVE-2022-1995 affects the WordPress plug-in “Malware Scanner” (miniOrange) prior to version 4.5.2. The issue arises because the plug-in does not sanitize and escape certain settings, allowing Highly privileged administrators to store malicious JavaScript, leading to client-side XSS when unfiltere...