CVE-2022-2325
CVE-2022-2325 affects the Invitation Based Registrations WordPress plugin (versions ≤ 2.2.84). The vulnerability arises because the plugin does not sanitize and escape certain settings, enabling Stored Cross-Site Scripting when unfiltered_html is disallowed (e.g., multisite). This can allow high-...