The search-everything plugin before 8.1.6 for WordPress has SQL injection related to empty search strings, a different vulnerability than CVE-2014-2316.Referenceshttps://wordpress.org/plugins/search-everything/#developers
