Security Advisory
CVE-2025-22676
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability in upcasted AWS S3 for WordPress Plugin – Upcasted upcasted-s3-offload allows Stored XSS.This issue affects AWS S3 for WordPress Plugin – Upcasted: from n/a through <= 3.0.3.