Description
Cross-site request forgery (CSRF) vulnerability in the Search Everything plugin before 8.1.1 for WordPress allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
References (2)
Core 2
Core References
Product x_refsource_confirm
http://wordpress.org/plugins/search-everything/changelog
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58502
Scores
EPSS
0.0095
EPSS Percentile
57.1%
Details
CWE
CWE-352
Status
published
Products (5)
zemanta/search_everything
7.0.2
zemanta/search_everything
7.0.3
zemanta/search_everything
7.0.4
zemanta/search_everything
8.0
zemanta/search_everything
< 8.1
Published
May 22, 2014
Tracked Since
Feb 18, 2026