CVE-2022-2425
The CVE-2022-2425 entry concerns the WP DS Blog Map WordPress plugin (versions up to 3.1.3).根 The underlying issue is that the plugin does not sanitize/escape certain settings, enabling Stored XSS when unfiltered_html is disallowed (e.g., multisite). Impact is described as allowing high-privilege...