Beta

Report

Search Exclude <= 1.2.2 is vulnerable to Arbitrary Settings Change vulnerability

Unauthenticated
Published
2019-09-07

search-exclude.php in the "Search Exclude" plugin before 1.2.4 for WordPress allows unauthenticated options changes.

CVE

https://www.cve.org/CVERecord?id=CVE-2019-15895

CVSS

Score:7.5

Severity:High

Version: 1.2.2

There is a patch available in v1.2.4 and we strongly recommend you update to this version as soon as possible.