| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-51884 | WordPress Posts Search plugin <= 1.2.2 - Stored Cross Site Scripting (XSS) vulnerability | Takashi Matsuyama | Posts Search | Medium | 6.5 | 2024-11-19 16:31:17 | Deep Dive |
| CVE-2024-51692 | WordPress Bing Search API Integration plugin <= 0.3.3 - Reflected Cross Site Scripting (XSS) vulnerability | askewbrook | Bing Search API Integration | High | 7.1 | 2024-11-09 12:50:24 | Deep Dive |
| CVE-2024-51693 | WordPress Search order by product SKU for WooCommerce plugin <= 0.2 - Reflected Cross Site Scripting (XSS) vulnerability | labdav | Search order by product SKU for WooCommerce | High | 7.1 | 2024-11-09 12:46:39 | Deep Dive |
| CVE-2024-51716 | WordPress Twitter real time search scrolling plugin <= 7.0 - Reflected Cross Site Scripting (XSS) vulnerability | gopiplus | Twitter real time search scrolling | High | 7.1 | 2024-11-09 11:57:01 | Deep Dive |
| CVE-2024-38714 | WordPress WP Fast Total Search <= 1.68.232 - Broken Access Control vulnerability | Epsiloncool | WP Fast Total Search | Medium | 4.3 | 2024-11-01 14:18:07 | Deep Dive |
| CVE-2024-43229 | WordPress WP Search Analytics plugin <= 1.4.9 - Broken Access Control vulnerability | Cornel Raiu | WP Search Analytics | Medium | 4.3 | 2024-11-01 14:17:37 | Deep Dive |
| CVE-2024-49238 | WordPress ADIF Log Search Widget plugin <= 1.0f - Reflected Cross Site Scripting (XSS) vulnerability | emka73 | ADIF Log Search Widget | 中危 | - | 2024-10-18 09:46:56 | Deep Dive |
| CVE-2024-49240 | WordPress AB Categories Search Widget plugin <= 0.2.5 - Reflected Cross Site Scripting (XSS) vulnerability | ajberasategui | AB Categories Search Widget | 中危 | - | 2024-10-18 09:45:17 | Deep Dive |
| CVE-2024-48035 | WordPress ACF Images Search And Insert plugin <= 1.1.4 - Arbitrary File Upload vulnerability | takayukii | ACF Images Search And Insert | Critical | 9.9 | 2024-10-16 13:05:49 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-9796 | WP-Advanced-Search < 3.3.9.2 - Unauthenticated SQL Injection | Unknown | WP-Advanced-Search | - | - | 2024-10-10 07:38:30 | Deep Dive |
| CVE-2024-47350 | WordPress YITH WooCommerce Ajax Search plugin <= 2.8.0 - SQL Injection vulnerability | YITHEMES | YITH WooCommerce Ajax Search | Critical | 9.3 | 2024-10-06 12:55:17 | Deep Dive |
| CVE-2024-47387 | WordPress Search Atlas SEO plugin <= 1.8.2 - Cross Site Scripting (XSS) vulnerability | Search Atlas Group | Search Atlas SEO | Medium | 5.9 | 2024-10-05 14:49:19 | Deep Dive |
| CVE-2024-9209 | WP Search Analytics <= 1.4.10 - Reflected Cross-Site Scripting | cornelraiu-1 | Search Analytics for WP | Medium | 6.1 | 2024-10-01 08:30:13 | Deep Dive |
| CVE-2024-7846 | YITH WooCommerce Ajax Search < 2.7.1 - Contributor+ Stored XSS | Unknown | YITH WooCommerce Ajax Search | - | - | 2024-09-23 06:00:02 | Deep Dive |
| CVE-2024-8364 | WP Custom Fields Search <= 1.2.35 - Authenticated (Contributor+) Stored Cross-Site Scripting via wpcfs-preset Shortcode | dondon-benjamincouk | WP Custom Fields Search | Medium | 6.4 | 2024-09-19 03:59:16 | Deep Dive |
| CVE-2024-8091 | Enhanced Search Box <= 0.6.1 - Settings Update via CSRF | Unknown | Enhanced Search Box | 中危 | - | 2024-09-17 06:00:06 | Deep Dive |
| CVE-2024-6835 | Ivory Search – WordPress Search Plugin <= 5.5.6 - Information Exposure via AJAX Search Form | vinod-dalvi | Ivory Search – WordPress Search Plugin | Medium | 5.3 | 2024-09-05 06:41:39 | Deep Dive |
| CVE-2024-7573 | Relevanssi Live Ajax Search <= 2.4 - Unauthenticated WP_Query Argument Injection | comesio | Relevanssi Live Ajax Search | Medium | 5.3 | 2024-08-28 02:05:44 | Deep Dive |
| CVE-2024-7850 | BP Profile Search <= 5.7.5 - Cross-Site Request Forgery to Reflected Cross-Site Scripting | dontdream | BP Profile Search | Medium | 6.1 | 2024-08-20 02:03:10 | Deep Dive |