CVE-2026-8617

The SearchPlus plugin for WordPress is vulnerable to unauthorized modification and deletion of data in versions up to, and including, 1.7.1. This is due to a missing capability check and missing nonce validation on the searchplus save token action callback() and searchplus reset token action callback() functions, both of which are exposed to unauthenticated users through the wp ajax nopriv hooks. This makes it possible for unauthenticated attackers to overwrite or delete the plugin's stored account token and account name options (dym token, dym name, searchplus token, searchplus name, sp token, sp name).