5 matches found
EUVD-2023-35142
Malicious code in bioql PyPI...
Cross site scripting
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in TheGuideX User IP and Location plugin = 2.2 versions...
CVE-2023-30780 WordPress User IP and Location Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in TheGuideX User IP and Location plugin = 2.2 versions...
CVE-2023-30780
CVE-2023-30780 is a stored XSS vulnerability in the WordPress plugin “User IP and Location” by TheGuideX, affecting versions ≤ 2.2. The issue arises from improper handling of user-supplied input, enabling authenticated users with contributor or higher roles to inject script into stored content. I...
WordPress plugin User IP and Location 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress...