Browse all 6 CVE security advisories affecting SearchIQ. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Searchiq is a search analytics platform designed to help organizations optimize their search functionality and user experience. Historically, the product has been susceptible to multiple vulnerability classes, including cross-site scripting (XSS), remote code execution (RCE), and privilege escalation, as evidenced by its six recorded CVEs. These vulnerabilities often stem from insufficient input validation and improper access controls. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities suggests potential risks for organizations deploying Searchiq in production environments, particularly those handling sensitive data or requiring robust security postures.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-30867 | WordPress SearchIQ plugin <= 4.7 - Cross Site Scripting (XSS) vulnerability — SearchIQCWE-79 | 6.5 | Medium | 2025-03-27 |
| CVE-2024-56229 | WordPress SearchIQ plugin <= 4.6 - Cross-Site Requst Forgery (CSRF) vulnerability — SearchIQCWE-352 | 4.3 | Medium | 2024-12-31 |
| CVE-2023-47832 | WordPress SearchIQ plugin <= 4.4 - Broken Access Control vulnerability — SearchIQCWE-862 | 5.3 | Medium | 2024-12-09 |
| CVE-2024-31259 | WordPress SearchIQ plugin <= 4.5 - Sensitive Data Exposure via Log File vulnerability — SearchIQCWE-532 | 7.5 | High | 2024-04-10 |
This page lists every published CVE security advisory associated with SearchIQ. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.