4 matches found
CVE-2022-40223
Nonce token leakage and missing authorization in SearchWP premium plugin = 4.2.5 on WordPress leading to plugin settings change...
CVE-2022-40223 WordPress SearchWP premium plugin <= 4.2.5 - Broken Authentication vulnerability
Nonce token leakage and missing authorization in SearchWP premium plugin = 4.2.5 on WordPress leading to plugin settings change...
CVE-2022-40223
Summary: CVE-2022-40223 affects the WordPress SearchWP premium plugin (versions ≤ 4.2.5). The vulnerability combines nonce token leakage with missing authorization, enabling changes to plugin settings without proper privileges. Multiple sources corroborate the issue and its impact on plugin setti...
CVE-2022-40223 WordPress SearchWP premium plugin <= 4.2.5 - Broken Authentication vulnerability
Nonce token leakage and missing authorization in SearchWP premium plugin = 4.2.5 on WordPress leading to plugin settings change...