Medium 6.1 Unfixed Closed 2025-06-14≤ 2.6 WordPress XiSearch bar Plugin <= 2.6 is vulnerable to Cross Site Request Forgery (CSRF) PatchstackWordfenceCVE