CVE-2022-1294
The CVE-2022-1294 entry concerns the WordPress IMDB info box plugin (versions ≤ 2.0). The vulnerability is a stored Cross-Site Scripting (XSS) flaw caused by inadequate sanitization/escaping of certain settings, allowing high-privileged users to inject JavaScript even when unfiltered_html is disa...