CVE-2022-47447: WordPress WP-Advanced-Search plugin <= 3.3.8 - Cross Site Request Forgery (CSRF) - Patchstack

Solution

No fix

Deactivate and delete. No reply from the vendor.

rezaduty discovered and reported this Cross Site Request Forgery (CSRF) vulnerability in WordPress WP-Advanced-Search Plugin. This could allow a malicious actor to force higher privileged users to execute unwanted actions under their current authentication. This vulnerability has not been known to be fixed yet.

Other vulnerabilities in this plugin

1 present

3 patched

View all

Report to Patchstack Alliance bounty platform and earn monthly cash prizes.

Learn more