Vulnerability Details CVE-2022-2311
The Find and Replace All WordPress plugin before 1.3 does not sanitize and escape some parameters from its setting page before outputting them back to the user, leading to a Reflected Cross-Site Scripting issue.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 21.6%
CVSS Severity
CVSS v3 Score 6.1
References
Products affected by CVE-2022-2311
-
cpe:2.3:a:find_and_replace_all_project:find_and_replace_all:*