CYAN Backup

Vulnerabilities 4Slug cyan-backupLatest version 2.5.5WordPress.org →

Minimum safe version

2.5.5

Update to 2.5.5 or later to address 4 fixable vulnerabilities

Latest available2.5.5
Medium 5.4
2025-05-19< 2.5.3

WordPress CYAN Backup Plugin < 2.5.3 is vulnerable to Cross Site Scripting (XSS)

PatchstackEUVDWordfenceCVE
Medium 5.4
2025-05-15< 2.5.3

CYAN Backup <= 2.5.2 - Authenticated (Admin+) Stored Cross-Site Scripting

EUVDWordfenceCVE