SQL Injection Vulnerability in Search Everything Plugin for WordPress (Versions before 7.0.3)

SQL Injection Vulnerability in Search Everything Plugin for WordPress (Versions before 7.0.3)

CVE-2014-2316 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in se_search_default in the Search Everything plugin before 7.0.3 for WordPress allows remote attackers to execute arbitrary SQL commands via the s parameter to index.php. NOTE: some of these details are obtained from third party information.

Learn more about our Wordpress Pen Testing.