| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-2452 | Advanced Woo Search <= 2.77 - Authenticated (Admin+) Stored Cross-Site Scripting | mihail-barinov | Advanced Woo Search – Product Search for WooCommerce | Medium | 4.4 | 2023-06-09 05:33:15 | Deep Dive |
| CVE-2021-4337 | Multiple XforWooCommerce Add-On Plugins (Various Versions) - Missing Authorization | XforWooCommerce | Package Quantity Discount | High | 8.8 | 2023-06-07 12:43:07 | Deep Dive |
| CVE-2022-4950 | Cool Plugins (Various Versions) - Arbitrary Plugin Installation and Activation | narinder-singh | The Events Calendar Events Notification Bar Addon | High | 8.8 | 2023-06-07 01:51:53 | Deep Dive |
| CVE-2021-4373 | Better Search <= 2.5.2 - Cross-Site Request Forgery to Settings Import | ajay | Better Search – Relevant search results for WordPress | High | 8.8 | 2023-06-07 01:51:44 | Deep Dive |
| CVE-2023-3005 | SourceCodester Local Service Search Engine Management System POST Parameter cross site scripting | SourceCodester | Local Service Search Engine Management System | Low | 3.5 | 2023-05-31 09:00:05 | Deep Dive |
| CVE-2022-47447 | WordPress WP-Advanced-Search Plugin <= 3.3.8 is vulnerable to Cross Site Request Forgery (CSRF) | Mathieu Chartier | WordPress WP-Advanced-Search | Medium | 4.3 | 2023-05-24 16:10:10 | Deep Dive |
| CVE-2022-47157 | WordPress WP Custom Fields Search Plugin <= 1.2.34 is vulnerable to Cross Site Scripting (XSS) | Don Benjamin | WP Custom Fields Search | Medium | 5.9 | 2023-05-18 10:09:47 | Deep Dive |
| CVE-2022-47587 | WordPress WP Search Analytics Plugin <= 1.4.5 is vulnerable to Cross Site Scripting (XSS) | Cornel Raiu | WP Search Analytics | Medium | 5.9 | 2023-05-10 10:59:48 | Deep Dive |
| CVE-2023-1435 | Ajax Search Lite Pro < 4.26.2 - Multiple Reflected Cross-Site Scripting | Unknown | Ajax Search Pro | 中危 | - | 2023-04-24 18:30:59 | Deep Dive |
| CVE-2023-1420 | Ajax Search Lite < 4.11.1, Pro < 4.26.2 - Reflected Cross-Site Scripting | Unknown | Ajax Search Lite | 中危 | - | 2023-04-24 18:30:50 | Deep Dive |
| CVE-2023-23832 | WordPress Ultimate WP Query Search Filter Plugin <= 1.0.10 is vulnerable to Cross Site Scripting (XSS) | TC | Ultimate WP Query Search Filter | Medium | 6.5 | 2023-04-23 10:06:46 | Deep Dive |
| CVE-2023-30529 | Jenkins Plugin Lucene-Search 跨站请求伪造漏洞 | Jenkins Project | Jenkins Lucene-Search Plugin | 中危 | - | 2023-04-12 17:05:17 | Deep Dive |
| CVE-2022-38456 | WordPress Ajax Search Lite Plugin <= 4.10.3 is vulnerable to Sensitive Data Exposure | Ernest Marcinko | Ajax Search Lite | Medium | 4.3 | 2023-03-15 14:46:17 | Deep Dive |
| CVE-2022-4649 | WP Extended Search < 2.1.2 - Contributor+ Stored XSS via Shortcode | Unknown | WP Extended Search | 中危 | - | 2023-01-30 20:31:36 | Deep Dive |
| CVE-2022-4467 | Search & Filter < 1.2.16 - Contributor+ Stored XSS | Unknown | Search & Filter | 中危 | - | 2023-01-23 14:31:52 | Deep Dive |
| CVE-2022-4297 | WP AutoComplete Search <= 1.0.4 - Unauthenticated SQLi | Unknown | WP AutoComplete Search | 超危 | - | 2023-01-02 21:49:08 | Deep Dive |
| CVE-2022-29580 | Path Traversal in Android Google Search App | Android Google Search App | High | 8.9 | 2022-12-13 14:31:42 | Deep Dive | |
| CVE-2022-41275 | SAP Solution Manager 输入验证错误漏洞 | SAP | Solution Manager (Enterprise Search) | Medium | 6.1 | 2022-12-13 03:14:10 | Deep Dive |
| CVE-2022-3131 | Search Logger <= 0.9 - Admin+ SQLi | Unknown | Search Logger – Know What Your Visitors Search | 高危 | - | 2022-10-17 00:00:00 | Deep Dive |
| CVE-2022-36383 | WordPress Word Search Puzzles game plugin <= 2.0.1 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities | WHA | Word Search Puzzles game (WordPress plugin) | Medium | 5.4 | 2022-09-21 19:05:05 | Deep Dive |