Ivorysearch Ivory Search — known CVE vulnerabilities
Every CVE whose affected-product data names Ivorysearch Ivory Search, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2021-24234 — CVSS 6.1 (medium): The Search Forms page of the Ivory Search WordPress lugin before 4.6.1 did not properly sanitise the tab parameter before output it in the…
CVE-2024-6835 — CVSS 5.3 (medium): The Ivory Search – WordPress Search Plugin plugin for WordPress is vulnerable to Information Exposure in all versions up to, and…
CVE-2021-25105 — CVSS 4.8 (medium): The Ivory Search WordPress plugin before 5.4.1 does not escape some of the Form settings, which could allow high privilege users to perform…
CVE-2025-5209 — CVSS 4.8 (medium): The Ivory Search WordPress plugin before 5.5.10 does not sanitise and escape some of its settings, which could allow high privilege users…