cleantalk
Vulnerabilities and Security Researches

Ivory Search – WordPress Search Plugin, CVE-2021-36869

CVE, Research URL

CVE-2021-36869

Home page URL

Security reports for Ivory Search – WordPress Search Plugin

Application

Ivory Search – WordPress Search Plugin

Published on
Oct 22, 2021
Research Description
Reflected Cross-Site Scripting (XSS) vulnerability in WordPress Ivory Search plugin (versions <= 4.6.6). Vulnerable parameter: &post.
Affected versions
Min -, max 5.4.4.
Status
vulnerable
Previous vulnerability researches
Ivory Search &#8211; WordPress Search Plugin (CVE-2022-4974) , Nov 15, 2024
Ivory Search &#8211; WordPress Search Plugin (CVE-2021-36869) , Jun 06, 2024
Ivory Search &#8211; WordPress Search Plugin (CVE-2021-24234) , Jun 06, 2024
Ivory Search &#8211; WordPress Search Plugin (CVE-2024-3233) , Jun 06, 2024
Ivory Search &#8211; WordPress Search Plugin (CVE-2021-25105) , Jun 06, 2024
New vulnerability
WP Employee Attendance System (CVE-2025-28972) , Jun 18, 2025
Wise Chat (CVE-2025-3774) , Jun 18, 2025
WPAdverts &#8211; Classifieds Plugin (CVE-2025-49878) , Jun 18, 2025
Brid Video Easy Publish (CVE-2025-5237) , Jun 18, 2025
YITH PayPal Express Checkout for WooCommerce (CVE-2025-48111) , Jun 18, 2025