CVE-2021-36884

Name of the Vulnerable Software and Affected Versions WordPress Backup Migration plugin versions <= 1.1.5

Description An Authenticated Persistent Cross-Site Scripting (XSS) issue has been discovered. This allows an attacker to inject malicious scripts into the application, which can lead to unauthorized actions on behalf of the user.

Recommendations For WordPress Backup Migration plugin versions <= 1.1.5, update to a version greater than 1.1.5 to resolve the issue. As a temporary workaround, consider restricting access to the plugin's functionality to minimize the risk of exploitation.