The Ivory Search plugin for WordPress is vulnerable to a security flaw which allows attackers to inject malicious web scripts in pages. This security flaw exists in all versions up to and including 5.4.6, and is caused by the plugin not properly sanitizing and escaping user input. If an attacker can successfully get a user to click on a link, these malicious scripts will be executed.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
© Really Simple Plugins
CoC 70461155
Kalmarweg 14-5
9723 JG, Groningen (NL)
