Vulnerability Details CVE-2014-2316
SQL injection vulnerability in se_search_default in the Search Everything plugin before 7.0.3 for WordPress allows remote attackers to execute arbitrary SQL commands via the s parameter to index.php. NOTE: some of these details are obtained from third party information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.2%
CVSS Severity
CVSS v2 Score 7.5
References
Products affected by CVE-2014-2316
-
cpe:2.3:a:wordpress:wordpress:-
-
cpe:2.3:a:zemanta:search_everything:7.0.2