Premium 1.14.9

I was alerted yesterday that Relevanssi Premium has a XSS vulnerability. If you are using the “Did you mean” feature, it is possible to construct a search query that contains scripts that are automatically run on the page if the “Did you mean” feature runs.

See DXWSecurity report on the vulnerability.

Version 1.14.9 fixes this vulnerability. If you use the “Did you mean” feature on your site, upgrade the plugin immediately. There are also other bug fixes and small improvements in the new version:

Did you mean function had a XSS vulnerability, which is now removed.
Minimum word length wasn’t applied to titles in indexing. It is now fixed. If you think this is a problem, rebuild the index.
TablePress compatibility has been improved.
Meta query handling has been improved, thanks to Maxime Culea.
Improved WP_Query parameter support: setting query variable sentence to 1 forces phrase search.

Get the new version from the plugin auto update or from the download page.

Your account

Not logged in. Log in to see your license details.

Search

Popular Resources

Pin a post for all searches

Relevanssi Premium has tools for pinning posts for specific queries and all searches where the post appears, but what if…

Index custom field contents

Custom fields (also known as post meta or meta fields) are a major part of WordPress the default search won’t…

Category title in the search results page

If you’re using category restriction dropdown on your search form, here’s a bit of code that you can add to your search results template to show how many hits were found and what the category is. If no category was selected, this’ll just show how many hits were found. <?php……the category is. If no category was selected, this’ll just show how many hits were found. <?php $cat = get_cat_name( $wp_query->query_vars[‘cat’] ); $s = $wp_query->query_vars[‘s’]; echo $wp_query->found_posts . ” results found with ‘ $s'”; if ( ! empty( $cat ) ) { echo ” in the ‘$cat’ category“; } ?>…