CVE-2022-29444
Cloudways Breeze WordPress plugin vulnerability CVE-2022-29444 affects versions up to 2.0.2. The issue is an XSS flaw caused by insufficient authorization and input handling in Breeze_Configuration, allowing a user with subscriber or higher role to trigger wp_ajax_* actions and modify plugin sett...