Crocoblock Jetsearch

6 CVEs affecting Crocoblock Jetsearch. Latest disclosed: 2025-12-29. Critical: 1, High: 1.

Top CVEs affecting Crocoblock Jetsearch
CVESeverityScorePublishedSummary
CVE-2025-49931Critical9.32025-10-22Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Crocoblock JetSearch jet-search allows Blind SQL Injectio…
CVE-2025-49930High7.12025-10-22Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Crocoblock JetSearch jet-search allows Reflected XSS.This…
CVE-2025-68504Medium6.52025-12-29Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Crocoblock JetSearch jet-search allows DOM-Based XSS.This…
CVE-2025-53996Medium6.52025-07-16Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Crocoblock JetSearch jet-search allows Stored XSS.This is…
CVE-2025-31043Medium6.52025-03-31Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Crocoblock JetSearch jet-search allows DOM-Based XSS.This…
CVE-2024-7136Medium6.42024-08-16The JetSearch plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 3.5.2 due to insuf…