CVE-2022-2535 – The SearchWP Live Ajax Search WordPress plugin before 1.6.2 does not ensure that users mak …

15 August 2022

Vuln ID: CVE-2022-2535

Published: 2022-08-15 11:21:28Z

Description: The SearchWP Live Ajax Search WordPress plugin before 1.6.2 does not ensure that users making a live search are limited to published posts only, allowing unauthenticated users to make a crafted query disclosing private/draft/pending post titles along with their permalink

Source: NVD.NIST.GOV

Date:

15 August 2022

Categorie(s):

NVD

Tag(s):

NVD

Phishing Scams in the Gaming Community20 April 2024
Critical Update: CrushFTP Zero-Day Flaw Exploited in Targeted Attacks20 April 2024
Palo Alto Networks Discloses More Details on Critical PAN-OS Flaw Under Attack20 April 2024
How APIs Help To Improve Your Customers’ Experience [5 Tips]20 April 2024
Essential Cyber Security Plan for Small Business20 April 2024