2 matches found
CVE-2022-50961
CVE-2022-50961 affects WordPress plugin IP2Location Country Blocker (v2.26.7). The stored XSS vulnerability allows authenticated users to inject arbitrary JavaScript via the Frontend Settings page, specifically by injecting scripts in the URL field of the Display page settings. The payload execut...
CVE-2024-32443 WordPress IP2Location Country Blocker plugin <= 2.34.2 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in IP2Location Download IP2Location Country Blocker.This issue affects Download IP2Location Country Blocker: from n/a through 2.34.2...