Ivory Search

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2025-63069	Vinod Dalvi Ivory Search	Med	0.34	5.3	0.00		Dec 9, 2025	Missing Authorization vulnerability in Vinod Dalvi Ivory Search add-search-to-menu allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ivory Search: from n/a through <= 5.5.12.
CVE-2025-5209	Vinod Dalvi Ivory Search		0.00	—	0.00		Jun 17, 2025	The Ivory Search WordPress plugin before 5.5.10 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed

CVE-2025-63069MedDec 9, 2025
Vinod Dalvi
Ivory Search
risk 0.34cvss 5.3epss 0.00
Missing Authorization vulnerability in Vinod Dalvi Ivory Search add-search-to-menu allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ivory Search: from n/a through <= 5.5.12.
CVE-2025-5209Jun 17, 2025
Vinod Dalvi
Ivory Search
risk 0.00cvss —epss 0.00
The Ivory Search WordPress plugin before 5.5.10 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed