CVE-2023-26530

Name of the Vulnerable Software and Affected Versions Paul Kehrer Updraft plugin versions <= 0.6.1

Description The issue is an Unauth. Reflected Cross-Site Scripting (XSS) vulnerability. This means that an attacker can inject malicious scripts into a website, potentially allowing them to steal user data or take control of the user's session. The vulnerability is present in the Paul Kehrer Updraft plugin and can be exploited without authentication.

Recommendations For versions <= 0.6.1, update to a version higher than 0.6.1 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.