Headline
CVE-2022-38456: WordPress Ajax Search Lite plugin <= 4.10.3 - Auth. Data Exposure vulnerability - Patchstack
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Ernest Marcinko Ajax Search Lite plugin <= 4.10.3 versions.
WordPress Ajax Search Lite Plugin <= 4.10.3 is vulnerable to Sensitive Data Exposure
4.3
Medium severity CVSS 3.1 score
Solution
Update the WordPress Ajax Search Lite plugin to the latest available version (at least 4.11).
Lana Codes discovered and reported this Sensitive Data Exposure vulnerability in WordPress Ajax Search Lite Plugin. This vulnerability has been fixed in version 4.11.
1 other known vulnerability for this pluginTo plugin page
Report to Patchstack Alliance bounty platform and earn monthly cash prizes.
Learn more