CVE-2022-2535 - Searchwp Searchwp Live Ajax Search

Moderate 5.3

The SearchWP Live Ajax Search WordPress plugin before 1.6.2 does not ensure that users making a live search are limited to published posts only, allowing unauthenticated users to make a crafted query disclosing private/draft/pending post titles along with their permalink

Affected software

Searchwp Searchwp Live Ajax Search

Reference links

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.