Medium severity4.8NVD Advisory· Published May 30, 2022· Updated Jun 17, 2026
CVE-2022-1395
CVE-2022-1395
Description
The Easy FAQ with Expanding Text WordPress plugin through 3.2.8.3.1 does not sanitise and escape its settings, allowing high privilege users to perform Cross-Site Scripting attacks when unfiltered_html is disallowed
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Easy FAQ with Expanding Text plugindescription
- Range: <=3.2.8.3.1
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/e5c06b38-fab8-44af-84dc-df94eb72ce80nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.