Vulnerabilities > Ajax Search Project > Ajax Search > 1.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-01-08 | CVE-2012-5853 | SQL Injection vulnerability in Ajax Search Project Ajax Search 1.0/1.1/1.2 SQL injection vulnerability in the "the_search_function" function in cardoza_ajax_search.php in the AJAX Post Search (cardoza-ajax-search) plugin before 1.3 for WordPress allows remote attackers to execute arbitrary SQL commands via the srch_txt parameter in a "the_search_text" action to wp-admin/admin-ajax.php. | 7.5 |