Which WP Fast Total Search – The Power of Indexed Search CVEs are tracked?

WP Fast Total Search – The Power of Indexed Search tracked CVEs include CVE-2024-39663, CVE-2024-29799, CVE-2025-57893, CVE-2025-30894, and CVE-2025-24571.

Where should operators start on this Plugin hub?

Start with the priority CVE quick links, then open the full report for affected versions, remediation notes, CVSS vectors, and source references.

Plugin Vulnerability Hub

Plugin 8 known issues Latest disclosed Aug 22, 2025

WP Fast Total Search – The Power of Indexed Search Vulnerabilities

Q: How many WP Fast Total Search – The Power of Indexed Search vulnerabilities have patch guidance?

8 of 8 tracked WP Fast Total Search – The Power of Indexed Search records include a published patch path.

Review known vulnerability records for the WordPress plugin WP Fast Total Search – The Power of Indexed Search (`fulltext-search`), including severity, CVE references, affected versions, and patch status.

Recent tracked CVEs on this page include CVE-2025-57893, CVE-2025-30894 and CVE-2025-24571, so operators can jump from disclosure to patch validation without scanning the full feed first.

View on WordPress.org Back to Feed

Known Records

High or Critical

Patch Coverage

100%

Last Updated

Aug 26, 2025

Priority CVE Quick Links

Fast paths into WP Fast Total Search – The Power of Indexed Search CVE reports

Start with the highest-signal CVE records for this WordPress plugin before scanning the full vulnerability feed.

Indexed CVEs

CVE-2024-39663 High 1.69.234

CVE-2024-39663 WP Fast Total Search – The Power of Indexed Search Stored Cross-Site Scripting

WP Fast Total Search <= 1.68.232 - Unauthenticated Stored Cross-Site Scripting

CVE-2024-29799 Medium 1.60.213

CVE-2024-29799 WP Fast Total Search – The Power of Indexed Search Stored Cross-Site Scripting

WP Fast Total Search <= 1.59.211 - Authenticated (Contributor+) Stored Cross-Site Scripting via WPFTS Live Search Widget

CVE-2025-57893 Medium 1.79.274

CVE-2025-57893 WP Fast Total Search – The Power of Indexed Search Cross-Site Request Forgery

WP Fast Total Search <= 1.79.270 - Cross-Site Request Forgery

CVE-2025-30894 Medium 1.79.264

CVE-2025-30894 WP Fast Total Search – The Power of Indexed Search Vulnerability

WP Fast Total Search <= 1.79.262 - Missing Authorization

CVE-2025-24571 Medium 1.79.262

CVE-2025-24571 WP Fast Total Search – The Power of Indexed Search Vulnerability

WP Fast Total Search <= 1.78.258 - Missing Authorization

CVE-2025-24572 Medium 1.79.262

CVE-2025-24572 WP Fast Total Search – The Power of Indexed Search Cross-Site Request Forgery

WP Fast Total Search <= 1.78.258 - Cross-Site Request Forgery

CVE-2024-38778 Medium 1.70.236

CVE-2024-38778 WP Fast Total Search – The Power of Indexed Search Cross-Site Request Forgery

WP Fast Total Search <= 1.69.234 - Cross-Site Request Forgery

CVE-2024-38714 Medium 1.69.234

CVE-2024-38714 WP Fast Total Search – The Power of Indexed Search Vulnerability

WP Fast Total Search <= 1.68.232 - Missing Authorization

Coverage Snapshot

What this page helps you verify fast

This hub clusters every indexed record for WP Fast Total Search – The Power of Indexed Search so operators can confirm whether a disclosed issue maps to the installed slug, version range, and patch path.

Patch Visibility

8 records include a published patch path, leaving 0 with no listed safe release yet.

Severity Mix

0 critical and 1 high severity finding.

Recent CVEs

CVE-2025-57893, CVE-2025-30894 and CVE-2025-24571

Reference Workflow

Jump from the hub into the full report when you need remediation notes, exploit context, CVSS vectors, or source references.

Triage First

Open the records most likely to drive action

These recent records surface the CVE strings, patch cues, and direct report links most operators need first.

CVE-2025-57893 Medium Patch path listed

CVE-2025-57893: WP Fast Total Search <= 1.79.270 - Cross-Site Request Forgery

The WP Fast Total Search – The Power of Indexed Search plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.79.270. This is due to missing...

Published

Aug 22, 2025

Patch Status

1.79.274

Open CVE-2025-57893 Report

CVE-2025-30894 Medium Patch path listed

CVE-2025-30894: WP Fast Total Search <= 1.79.262 - Missing Authorization

The WP Fast Total Search – The Power of Indexed Search plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and in...

Published

Mar 27, 2025

Patch Status

1.79.264

Open CVE-2025-30894 Report

CVE-2025-24571 Medium Patch path listed

CVE-2025-24571: WP Fast Total Search <= 1.78.258 - Missing Authorization

The WP Fast Total Search – The Power of Indexed Search plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and in...

Published

Jan 24, 2025

Patch Status

1.79.262

Open CVE-2025-24571 Report

Known Vulnerabilities

Reports for WP Fast Total Search – The Power of Indexed Search

Sorted by latest disclosure date so newly published issues surface first.

Plugin Medium Patched: Yes CVE-2025-57893

CVE-2025-57893: WP Fast Total Search <= 1.79.270 - Cross-Site Request Forgery

The WP Fast Total Search – The Power of Indexed Search plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.79.270. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated a...

Published

Aug 22, 2025

Patched Release

1.79.274

Affected Versions

Versions up to 1.79.270

Next Step

Update to 1.79.274 or newer if supported.

Open CVE-2025-57893 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2025-30894

CVE-2025-30894: WP Fast Total Search <= 1.79.262 - Missing Authorization

The WP Fast Total Search – The Power of Indexed Search plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 1.79.262. This makes it possible for authenticated attackers, with Subscriber-lev...

Published

Mar 27, 2025

Patched Release

1.79.264

Affected Versions

Versions up to 1.79.262

Next Step

Update to 1.79.264 or newer if supported.

Open CVE-2025-30894 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2025-24571

CVE-2025-24571: WP Fast Total Search <= 1.78.258 - Missing Authorization

The WP Fast Total Search – The Power of Indexed Search plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 1.78.258. This makes it possible for authenticated attackers, with Subscriber-lev...

Published

Jan 24, 2025

Patched Release

1.79.262

Affected Versions

Versions up to 1.78.258

Next Step

Update to 1.79.262 or newer if supported.

Open CVE-2025-24571 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2025-24572

CVE-2025-24572: WP Fast Total Search <= 1.78.258 - Cross-Site Request Forgery

The WP Fast Total Search plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.78.258. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to perform an unauthorize...

Published

Jan 24, 2025

Patched Release

1.79.262

Affected Versions

Versions up to 1.78.258

Next Step

Update to 1.79.262 or newer if supported.

Open CVE-2025-24572 Report Open CVE Reference

Plugin High Patched: Yes CVE-2024-39663

CVE-2024-39663: WP Fast Total Search <= 1.68.232 - Unauthenticated Stored Cross-Site Scripting

The WP Fast Total Search – The Power of Indexed Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 1.68.232 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers...

Published

Aug 01, 2024

Patched Release

1.69.234

Affected Versions

Versions up to 1.68.232

Next Step

Update to 1.69.234 or newer if supported.

Open CVE-2024-39663 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2024-38778

CVE-2024-38778: WP Fast Total Search <= 1.69.234 - Cross-Site Request Forgery

The WP Fast Total Search plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.69.234. This is due to missing or incorrect nonce validation on the ajax_get_qlog_data and ajax_se_style_reset functions. This makes it possible for unaut...

Published

Jul 19, 2024

Patched Release

1.70.236

Affected Versions

Versions up to 1.69.234

Next Step

Update to 1.70.236 or newer if supported.

Open CVE-2024-38778 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2024-38714

CVE-2024-38714: WP Fast Total Search <= 1.68.232 - Missing Authorization

The WP Fast Total Search plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions like ajax_set_pause, ajax_se_style_preview, and WPFTS_jxResponse in versions up to, and including, 1.68.232. This makes it possi...

Published

Jul 11, 2024

Patched Release

1.69.234

Affected Versions

Versions up to 1.68.232

Next Step

Update to 1.69.234 or newer if supported.

Open CVE-2024-38714 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2024-29799

CVE-2024-29799: WP Fast Total Search <= 1.59.211 - Authenticated (Contributor+) Stored Cross-Site Scripting via WPFTS Live Search Widget

The WP Fast Total Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the WPFTS Live Search widget in versions up to, and including, 1.59.211 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, w...

Published

Mar 25, 2024

Patched Release

1.60.213

Affected Versions

Versions up to 1.59.211

Next Step

Update to 1.60.213 or newer if supported.

Open CVE-2024-29799 Report Open CVE Reference