CVE-2022-3937 Information

Description

The Easy Video Player WordPress plugin before 1.2.2.3 does not sanitize and escapes some parameters which could allow users with a role as low as Contributor to perform Cross-Site Scripting attacks.

Reference

https://wpscan.com/vulnerability/ac7158c5-3d11-4865-b26f-41ab5a8120af