Advance Search Project Advance Search — known CVE vulnerabilities
Every CVE whose affected-product data names Advance Search Project Advance Search, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-38348 — CVSS 6.1 (medium): The Advance Search WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the wpas_id parameter found in the…
CVE-2024-3265 — CVSS 4.7 (medium): The Advanced Search WordPress plugin through 1.1.6 does not properly escape parameters appended to an SQL query, making it possible for…