CVE-2008-0837

Name of the Vulnerable Software and Affected Versions John Godley Search Unleashed plugin for WordPress version 0.2.10

Description The issue is related to a cross-site scripting (XSS) vulnerability in the log feature of the plugin. This vulnerability allows remote attackers to inject arbitrary web script or HTML via the s parameter when the administrator views the log file.

Recommendations For John Godley Search Unleashed plugin for WordPress version 0.2.10, consider disabling the log feature until a patch is available to prevent exploitation. Restrict access to the log file to minimize the risk of arbitrary web script or HTML injection via the s parameter. At the moment, there is no information about a newer version that contains a fix for this vulnerability.