High

DATE	CVE	VULNERABILITY TITLE	RISK
2024-06-13	CVE-2024-4145	SQL Injection vulnerability in Wp-Media Search & Replace The Search & Replace WordPress plugin before 3.2.2 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks (such as within a multi-site network). network low complexity wp-media CWE-89	7.2

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.