CVE-2026-42734

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Dylan Kuhn Geo Mashup geo-mashup allows Reflected XSS.This issue affects Geo Mashup: from n/a through = 1.13.19...

PT-2026-43646

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Dylan Kuhn Geo Mashup geo-mashup allows Reflected XSS.This issue affects Geo Mashup: from n/a through = 1.13.19...

EUVD-2026-31804

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Dylan Kuhn Geo Mashup allows Stored XSS. This issue affects Geo Mashup: from n/a through 1.13.18...

CVE-2025-48293

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Dylan Kuhn Geo Mashup geo-mashup allows PHP Local File Inclusion.This issue affects Geo Mashup: from n/a through = 1.13.16...

CVE-2024-44008

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Dylan Kuhn Geo Mashup allows Stored XSS.This issue affects Geo Mashup: from n/a through 1.13.12...

CVE-2024-44008

CVE-2024-44008 affects the WordPress Geo Mashup plugin up to version 1.13.12. It is a Stored XSS caused by improper neutralization of input during web page generation. Exploitation would require a Contributor-level privilege; patch status indicates the issue is fixed in 1.13.13. Patchstack notes ...

CVE-2024-44008 WordPress Geo Mashup plugin <= 1.13.12 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Dylan Kuhn Geo Mashup geo-mashup allows Stored XSS.This issue affects Geo Mashup: from n/a through = 1.13.12...

WordPress Geo Mashup Plugin <= 1.13.12 is vulnerable to Cross Site Scripting (XSS)

Software Geo Mashup Type Plugin Vulnerable versions = 1.13.12 Fixed in 1.13.13 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-44008 Patch priority Low CVSS severity Low 6.5 Developer Dylan Kuhn PSID d830e975a22f Credits LVT-tholv2k Required privilege Contributor...

WordPress Geo Mashup Plugin < 1.13.12 is vulnerable to Cross Site Scripting (XSS)

Software Geo Mashup Type Plugin Vulnerable versions 1.13.12 Fixed in 1.13.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Dylan Kuhn PSID 0cbe2859392c Credits Rafie Muhammad Patchstack Required...