CVE-2025-48099
WordPress Search & Filter plugin <= 1.2.17 - Cross Site Request Forgery (CSRF) to Open Redirect vulnerability
CVSS Score
4.7
EPSS Score
0.0%
EPSS Percentile
0th
Cross-Site Request Forgery (CSRF) vulnerability in Code Amp Search & Filter search-filter allows Cross Site Request Forgery.This issue affects Search & Filter: from n/a through <= 1.2.17.
| CWE | CWE-352 |
| Vendor | code amp |
| Product | search & filter |
| Published | Oct 22, 2025 |
| Last Updated | Apr 1, 2026 |
Stay Ahead of the Next One
Get instant alerts for code amp search & filter
Be the first to know when new medium vulnerabilities affecting code amp search & filter are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Code Amp / Search & Filter
0 โค 1.2.17
References
Credits
ni gensho | Patchstack Bug Bounty Program