ElasticPress

Vulnerabilities 11Slug elasticpressLatest version 5.3.3WordPress.org →

Minimum safe version

5.1.1

Update to 5.1.1 or later to address 11 fixable vulnerabilities

Latest available5.3.3 ✓

Medium 4.3

2024-06-08< 5.1.1

CVE-2024-35684

CVE Patchstack Wordfence

Medium 4.3

2023-07-01< 3.5.4

CVE-2021-4405

CVE Wordfence WPScan

N/A

2023-06-07< 3.5.4

CVE-2021-4342

CVE

Critical 9.8

2023-04-11< 4.5.1

webpack JS package <= 5.75.0 - Sandbox Bypass

Wordfence CVE

N/A

< 3.5.4

Various Affected Software (Various Versions) - Cross-Site Request Forgery Bypass

Wordfence

N/A

2022-04-05< 4.2.0

Moment.js <= 2.29.1 - Directory Traversal

Wordfence

High 7.5

2022-07-15< 4.3.0

CVE-2022-25858

CVE Wordfence

High 7.5

2022-10-14< 4.4.0

CVE-2022-37603

CVE Wordfence

High 7.5

2022-10-11< 4.4.0

CVE-2022-37599

CVE Wordfence

Critical 9.8

2022-10-12< 4.4.0

CVE-2022-37601

CVE Wordfence

N/A

2021-02-12< 3.5.4

WordPress ElasticPress plugin <= 3.5.3 - Nonce Check Bypass vulnerability

Patchstack