cleantalk
Vulnerabilities and Security Researches

CM WordPress Search And Replace Plugin, CVE-2023-31228

CVE, Research URL

CVE-2023-31228

Home page URL

Security reports for CM WordPress Search And Replace Plugin

Application

CM WordPress Search And Replace Plugin

Published on
Aug 18, 2023
Research Description
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in CreativeMindsSolutions CM On Demand Search And Replace plugin <= 1.3.0 versions.
Affected versions
Min -, max 1.3.1.
Status
vulnerable
Previous vulnerability researches
CM WordPress Search And Replace Plugin (CVE-2023-28749) , Jun 07, 2024
CM WordPress Search And Replace Plugin (CVE-2023-31228) , Jun 07, 2024
CM WordPress Search And Replace Plugin (CVE-2025-54727) , Aug 16, 2025
CM WordPress Search And Replace Plugin (CVE-2025-54728) , Aug 16, 2025
CM WordPress Search And Replace Plugin (CVE-2024-5028) , Jul 15, 2024
New vulnerability
Linux Promotional Plugin (CVE-2025-7668) , Aug 17, 2025
Poll Maker &#8211; Best WordPress Poll Plugin (CVE-2024-12575) , Aug 17, 2025
Add User Meta (CVE-2025-7688) , Aug 17, 2025
User Profile Builder &#8211; Beautiful User Registration Forms, User Profiles &amp; User Role Editor (CVE-2025-8896) , Aug 17, 2025
RSS Feed Pro (CVE-2025-53581) , Aug 17, 2025