Source: National Vulnerability Database

The Easy FAQ with Expanding Text WordPress plugin through 3.2.8.3.1 does not sanitise and escape its settings, allowing high privilege users to perform Cross-Site Scripting attacks when unfiltered_html is disallowed

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-1395

96 hits since 2022-06-01

PHP Vulns Source Ratio: 17% (6654 total, 569 propagated, 3327 filtered)