Lucene search
WpvulndbWPVDB-ID:76213AFE-8521-4751-8125-308DAA136E24HistoryOct 24, 2022 - 12:00 a.m.
SearchWP < 4.2.6 - Subscriber+ Settings Update
2022-10-2400:00:00
wpscan.com
14
searchwp
plugin
update
vulnerability
settings
authentication
users
EPSS
0.001
Percentile
22.7%
The plugin does not have authorisation check when updating its settings, which could allow any authenticated users, such as subscriber to update them
Related
prion
prion
Authorization
2022-11-08 19:15:00
cve
cve
CVE-2022-40223
2022-11-08 19:15:14
cvelist
cvelist
patchstack
patchstack
nvd
nvd
CVE-2022-40223
2022-11-08 19:15:14