cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches forsearch-filter search-filter

Direction: descending
Nov 10, 2025

Search & Filter # CVE-2025-48099

CVE, Research URL

CVE-2025-48099

Home page URL

Security reports for Search & Filter

Application

Search & Filter

Date
Oct 22, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Code Amp Search & Filter search-filter allows Cross Site Request Forgery.This issue affects Search & Filter: from n/a through <= 1.2.17.
Affected versions
max 1.2.18.
Status
vulnerable
Jun 07, 2024

Search &amp; Filter # CVE-2022-4467

CVE, Research URL

CVE-2022-4467

Home page URL

Security reports for Search &amp; Filter

Application

Search &amp; Filter

Date
Jan 23, 2023
Research Description
The Search & Filter WordPress plugin before 1.2.16 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admin.
Affected versions
max 1.2.16.
Status
vulnerable