WordPress Relevanssi Premium plugin <= 2.27.4 - Unauthenticated SQL Injection

Unauthenticated SQL Injection vulnerability discovered by Jack Taylor in WordPress Plugin Relevanssi Premium versions = 2.27.4...

WordPress Relevanssi plugin <= 4.24.4 - Unauthenticated SQL Injection

Unauthenticated SQL Injection vulnerability discovered by Jack Taylor in WordPress Plugin Relevanssi versions = 4.24.4...

WordPress Relevanssi Plugin < 4.22 is vulnerable to Sensitive Data Exposure

Software Relevanssi Type Plugin Vulnerable versions 4.22 Fixed in 4.22 OWASP Top 10 A1: Broken Access Control Classification Sensitive Data Exposure CVE N/A Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 5f9eb9b2e9af Credits N/A Required privilege Unauthenticated Publishe...

WordPress Relevanssi Premium Cross-Site Scripting Vulnerability

WordPress is a set of blogging platform developed in PHP language by WordPress Software Foundation, which supports setting up personal blog sites on servers with PHP and MySQL.Relevanssi Premium is a commercial version of the instant search plugin for websites. A cross-site scripting vulnerabilit...

CVE-2017-1000038

WordPress plugin Relevanssi version 3.5.7.1 is vulnerable to stored XSS resulting in attacker being able to execute JavaScript on the affected site...