Lucene search
K

7 matches found

Patchstack
Patchstack
added 2026/02/03 4:28 a.m.5 views

WordPress GeoDataSource Country Region DropDown plugin <= 1.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by zakaria in WordPress Plugin GeoDataSource Country Region DropDown versions = 1.0.1...

6.4CVSS8.3AI score0.00337EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-50886

Malicious code in bioql PyPI...

6.4CVSS9AI score0.00337EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 9:28 a.m.3 views

CVE-2024-12474

The GeoDataSource Country Region DropDown plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'gds-country-dropdown' shortcode in all versions up to, and including, 1.0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This...

6.4CVSS5.9AI score0.00337EPSS
Exploits0References1
CVE
CVE
added 2024/12/14 5:34 a.m.42 views

CVE-2024-12474

CVE-2024-12474 – WordPress GeoDataSource Country Region DropDown : The WordPress plugin is vulnerable to Stored Cross-Site Scripting via the gds-country-dropdown shortcode in all versions up to and including 1.0.1 due to insufficient input sanitization and output escaping. Exploitation requires a...

6.4CVSS5.7AI score0.00337EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/12/14 5:34 a.m.9 views

CVE-2024-12474 GeoDataSource Country Region DropDown <= 1.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

The GeoDataSource Country Region DropDown plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'gds-country-dropdown' shortcode in all versions up to, and including, 1.0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This...

6.4CVSS5.8AI score0.00337EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/12/14 12:0 a.m.3 views

PT-2024-17610 · WordPress · Geodatasource Country Region Dropdown

Name of the Vulnerable Software and Affected Versions: GeoDataSource Country Region DropDown plugin for WordPress versions up to, and including, 1.0.1 Description: The issue is related to Stored Cross-Site Scripting via the plugin's 'gds-country-dropdown' shortcode due to insufficient input...

6.4CVSS6.2AI score0.00337EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/12/14 12:0 a.m.3 views

WordPress plugin GeoDataSource Country Region DropDown 跨站脚本漏洞

WordPress and the WordPress plugin are products of the WordPress Foundation, a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress plugin...

6.4CVSS7.9AI score0.00337EPSS
Exploits0References2
Rows per page
Query Builder