3 matches found
CVE-2022-2311 Find and Replace All < 1.3 - Reflected Cross Site Scripting
The Find and Replace All WordPress plugin before 1.3 does not sanitize and escape some parameters from its setting page before outputting them back to the user, leading to a Reflected Cross-Site Scripting issue...
CVE-2022-2311 Find and Replace All < 1.3 - Reflected Cross Site Scripting
The Find and Replace All WordPress plugin before 1.3 does not sanitize and escape some parameters from its setting page before outputting them back to the user, leading to a Reflected Cross-Site Scripting issue...
CVE-2022-2311
The vulnerability CVE-2022-2311 affects the WordPress Find and Replace All plugin prior to version 1.3, where parameters from the plugin’s settings page are not properly sanitized/escaped before being echoed to the user, enabling a reflected Cross-Site Scripting (XSS) attack. The issue is documen...