VYPR

Search Everything

by Zemanta

Source repositories

CVEs (4)

  • CVE-2017-18571CriAug 22, 2019
    risk 0.64cvss 9.8epss 0.02

    The search-everything plugin before 8.1.7 for WordPress has SQL injection related to WordPress 4.7.x, a different vulnerability than CVE-2014-2316.

  • CVE-2016-10917CriAug 22, 2019
    risk 0.64cvss 9.8epss 0.02

    The search-everything plugin before 8.1.6 for WordPress has SQL injection related to empty search strings, a different vulnerability than CVE-2014-2316.

  • CVE-2014-3843May 22, 2014
    risk 0.00cvss epss 0.01

    Cross-site request forgery (CSRF) vulnerability in the Search Everything plugin before 8.1.1 for WordPress allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

  • CVE-2014-2316Mar 9, 2014
    risk 0.00cvss epss 0.02

    SQL injection vulnerability in se_search_default in the Search Everything plugin before 7.0.3 for WordPress allows remote attackers to execute arbitrary SQL commands via the s parameter to index.php. NOTE: some of these details are obtained from third party information.