Known Vulnerabilities for Better Search Replace by Wpengine
Listed below are 1 of the newest known vulnerabilities associated with "Better Search Replace" by "Wpengine".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-25392 json | URL Redirection to Untrusted Site ('Open Redirect') vulnerability in KaizenCoders Update URLs – Quick and Easy way to s... | Not Provided | 2026-02-19 | 2026-04-01 |
| CVE-2025-54728 json | Cross-Site Request Forgery (CSRF) vulnerability in CreativeMindsSolutions CM On Demand Search And Replace cm-on-demand-search... | Not Provided | 2025-08-14 | 2026-04-01 |
| CVE-2025-54727 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CreativeMindsSolutions ... | Not Provided | 2025-08-14 | 2026-04-01 |
| CVE-2025-54045 json | Missing Authorization vulnerability in CreativeMindsSolutions CM On Demand Search And Replace cm-on-demand-search-and-replace... | Not Provided | 2025-12-16 | 2026-04-01 |
| CVE-2025-27297 json | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in guelben Bravo Search & ... | Not Provided | 2025-02-24 | 2026-04-01 |
| CVE-2023-6933 json | The Better Search Replace plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.... | Not Provided | 2024-02-05 | 2026-04-08 |