[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f5MA9m59GMNvr6o6EGDoipg9Cmh4UYJqCGPbXVChKNCk":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"CVE-2022-2535","searchwp-live-ajax-search-sensitive-information-disclosure","SearchWP Live Ajax Search \u003C= 1.6.1 - Sensitive Information Disclosure","The SearchWP Live Ajax Search  plugin for WordPress is vulnerable to arbitrary post title disclosure in versions up to, and including, 1.6.1. This is due to insufficient checking of a post status before displaying to a user. This makes it possible for unauthenticated attackers to view post titles even when they are not in a 'publish' state.","searchwp-live-ajax-search",null,"\u003C=1.6.1","1.6.2","medium",5.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Exposure of Sensitive Information to an Unauthorized Actor","2022-07-25 00:00:00","2024-01-22 19:56:02",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Ff8ddb7df-7f74-486d-a55f-9e2d1e91f112?source=api-prod",547]