Cve 2025 0215. Microsoft Patch Tuesday, January 2025 Security Update Review Qualys ThreatPROTECT Summary CVE-2025-0215 is a Reflected Cross-Site Scripting (XSS) vulnerability affecting the UpdraftPlus: WP Backup & Migration Plugin for WordPress, versions up to and including 1.24.12 This vulnerability affects all versions of the plugin up to and including 1.24.12
Citrix Cve 20254966 David Mcgrath from davidmcgrath.pages.dev
This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can. Description CVE-2025-0215 pertains to a Reflected Cross-Site Scripting (XSS) vulnerability found in the UpdraftPlus: WP Backup & Migration Plugin for WordPress
Citrix Cve 20254966 David Mcgrath
The UpdraftPlus: WP Backup & Migration Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the showdata and initiate_restore parameters in all versions up to, and including, 1.24.12 due to insufficient input sanitization and output escaping Description CVE-2025-0215 pertains to a Reflected Cross-Site Scripting (XSS) vulnerability found in the UpdraftPlus: WP Backup & Migration Plugin for WordPress CVE-2025-0215 Vulnerability, Severity 0 N/A, Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Cve202520197 Dasie. Summary CVE-2025-0215 is a Reflected Cross-Site Scripting (XSS) vulnerability affecting the UpdraftPlus: WP Backup & Migration Plugin for WordPress, versions up to and including 1.24.12 The root cause stems from insufficient input sanitization and output escaping for the parameters showdata and initiate_restore.
New Features November 2022 Phoenix Security. Unauthenticated attackers can exploit this flaw by injecting arbitrary web scripts. CVE-2025-0215 Vulnerability, Severity 0 N/A, Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')