Advanced Woo Search < 2.00 - SQL query leak in ajax search



Description
Every ajax search returns the raw SQL query in the response.

Affects Plugin

fixed in version 2.00

References

CVE 2020-12070
URL https://plugins.trac.wordpress.org/browser/advanced-woo-search/tags/1.99/includes/class-aws-search.php#L222

Classification

Type UNKNOWN

Miscellaneous

Views 1107
Verified No
WPVDB ID 10191

Timeline

Publicly Published 2020-04-22 (about 1 month ago)
Added 2020-04-25 (about 1 month ago)
Last Updated 2020-04-26 (about 1 month ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin