Find And Replace All Project Find And Replace All — known CVE vulnerabilities
Every CVE whose affected-product data names Find And Replace All Project Find And Replace All, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-2311 — CVSS 6.1 (medium): The Find and Replace All WordPress plugin before 1.3 does not sanitize and escape some parameters from its setting page before outputting…
CVE-2022-3850 — CVSS 4.3 (medium): The Find and Replace All WordPress plugin before 1.3 does not have CSRF check when replacing string, which could allow attackers to make a…