WordPress · Themify Post Type Builder Search Addon · CVE-2022-1047
**Name of the Vulnerable Software and Affected Versions**
Themify Post Type Builder Search Addon WordPress plugin versions prior to 1.4.0
**Description**
The issue arises from the plugin's failure to properly escape the current page URL before reusing it in an HTML attribute, leading to a reflected cross-site scripting vulnerability.
**Recommendations**
For versions prior to 1.4.0, update to version 1.4.0 or later to resolve the issue.