CVE-2024-7630 Relevanssi <= 4.22.2 (Free) and <= 2.25.1 (Premium) - Unauthenticated Information Exposure

The Relevanssi – A Better Search plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 4.22.2 Free and 2.25.1 Premium via the relevanssidoquery due to insufficient limitations on the posts that are returned when searching. This makes it possible for...

PT-2024-24424 · WordPress · Relevanssi

Name of the Vulnerable Software and Affected Versions: The Relevanssi – A Better Search plugin for WordPress versions up to, and including, 4.22.1 Description: The issue allows unauthorized modification of data due to a missing capability check on the relevanssi update counts function. This makes...

Cross site request forgery (csrf)

The Relevanssi WordPress plugin before 4.22.0, Relevanssi Premium WordPress plugin before 2.25.0 allows any unauthenticated user to read draft and private posts via a crafted request...

Relevanssi 2.7.2 Wordpress Plugin Stored XSS Vulnerability

No description provided by source. Exploit Title: Relevanssi User Searches WordPress plugin Stored XSS Date: 20-2-2011 Author: Saif El-Sherei Software Link: http://downloads.wordpress.org/plugin/relevanssi.2.7.2.zip Version: Relevanssi 2.7.2, WordPress 3.0.5 Tested on: FireFox 3.6.13, IE 8 Vendor...