Lucene search
K

9 matches found

CNVD
CNVD
added 2025/10/13 12:0 a.m.3 views

WordPress Ajax WooSearch plugin SQL Injection Vulnerability

WordPress Ajax WooSearch plugin is a plugin for enhancing the search functionality of your website, mainly used to improve the user experience, supporting real-time search and indexing of multiple content types. WordPress Ajax WooSearch plugin suffers from an SQL injection vulnerability that stem...

9.8CVSS8.1AI score0.00337EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/03 6:42 a.m.12 views

CVE-2025-9697

The Ajax WooSearch WordPress plugin through 1.0.0 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...

9.8CVSS7.6AI score0.00337EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/10/03 12:54 a.m.7 views

WordPress Ajax WooSearch plugin <= 1.0.0 - Unauthenticated SQL Injection vulnerability

Unauthenticated SQL Injection vulnerability discovered by Khaled Alenazi Nxploited in WordPress Plugin Ajax WooSearch versions = 1.0.0...

9.8CVSS7.8AI score0.00337EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2025/10/02 6:15 a.m.7 views

CVE-2025-9697

The Ajax WooSearch WordPress plugin through 1.0.0 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...

9.8CVSS0.00337EPSS
Exploits0References1
CVE
CVE
added 2025/10/02 6:0 a.m.21 views

CVE-2025-9697

CVE-2025-9697 affects the Ajax WooSearch WordPress plugin (versions

9.8CVSS7.6AI score0.00337EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/02 6:0 a.m.11 views

CVE-2025-9697 Ajax WooSearch <= 1.0.0 - Unauthenticated SQL Injection

The Ajax WooSearch WordPress plugin through 1.0.0 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...

0.00337EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/02 12:0 a.m.7 views

WordPress plugin Ajax WooSearch 安全漏洞

WordPress Ajax WooSearch plugin is a plugin for enhancing the search functionality of your website, mainly used to improve the user experience, supporting real-time search and indexing of multiple content types. WordPress Ajax WooSearch plugin suffers from an SQL injection vulnerability that stem...

9.8CVSS8AI score0.00337EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/02 12:0 a.m.4 views

PT-2025-40323

Name of the Vulnerable Software and Affected Versions Ajax WooSearch WordPress plugin versions through 1.0.0 Description The Ajax WooSearch WordPress plugin does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action. This allows for SQL injection by...

9.8CVSS7.7AI score0.00337EPSS
Exploits0References5
OSV
OSV
added 2020/04/24 11:15 p.m.5 views

CVE-2020-12070

The Advanced Woo Search plugin version through 1.99 for Wordpress suffers from a sensitive information disclosure vulnerability in every ajax search request via the sql field to includes/class-aws-search.php...

7.5CVSS7.1AI score0.01984EPSS
Exploits0References3
Rows per page
Query Builder