VYPR

WP AutoComplete Search

by WordPress

CVEs (1)

  • CVE-2022-4297CriJan 2, 2023
    risk 0.67cvss 9.8epss 0.04

    The WP AutoComplete Search WordPress plugin through 1.0.4 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX available to unauthenticated users, leading to an unauthenticated SQL injection