WordPress Plugin Vulnerabilities

Ajax Search Lite < 4.11.1 - Subscriber+ Sensitive Data Disclosure

Description

The plugin does not have authorisation and CSRF checks in the wd_search_cf AJAX action, which could allow any authenticated users to call it and retrieve arbitrary post metadata

Note: v4.11 added only a CSRF check, authorisation was added in 4.11.1

Affects Plugins

Plugin icon
ajax-search-lite
Fixed in 4.11.1

References

CVE
CVE-2022-38456

Classification

Type
SENSITIVE DATA DISCLOSURE
OWASP top 10
A3: Sensitive Data Exposure
CWE
CWE-200
CVSS
4.3 (medium)

Miscellaneous

Original Researcher
Lana Codes
Verified
No
WPVDB ID
c10d121d-22dd-421c-9423-a5fa459a92d5

Timeline

Publicly Published
2023-02-06 (about 3 years ago)
Added
2023-03-15 (about 3 years ago)
Last Updated
2023-03-31 (about 3 years ago)

Other

Published
Title
Published
2026-02-17
Title
Context Blog < 1.2.6 - Unauthenticated Private Post Disclosure
Published
2025-12-31
Title
Post Video Players <= 1.163 - Authenticated (Contributor+) Information Exposure
Published
2024-11-05
Title
Contact Form 7 – Dynamic Text Extension < 4.5.1 - Information Disclosure via Shortcode
Published
2026-01-06
Title
Money Space < 2.14.0 - Unauthenticated Sensitive Information Exposure
Published
2026-02-01
Title
rtMedia for WordPress, BuddyPress and bbPress < 4.7.9 - Unauthenticated Information Exposure