WordPress iQ Block Country <=1.2.11 - Cross-Site Scripting

WordPress iQ Block Country plugin 1.2.11 and prior contains a cross-site scripting vulnerability. An attacker can execute arbitrary script in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and...

CVE-2022-0246

The settings of the iQ Block Country WordPress plugin before 1.2.13 can be exported or imported using its backup functionality. An authorized user can import preconfigured settings of the plugin by uploading a zip file. After the uploading process, files in the uploaded zip file are extracted one...

EUVD-2021-23449

Malware in sbrugna...

EUVD-2022-44396

Malicious code in bioql PyPI...

EUVD-2022-25043

Malicious code in bioql PyPI...

CVE-2022-1762

The iQ Block Country WordPress plugin before 1.2.20 does not properly checks HTTP headers in order to validate the origin IP address, allowing threat actors to bypass it's block feature by spoofing the headers...

CVE-2022-41155

Block BYPASS vulnerability in iQ Block Country plugin = 1.2.18 on WordPress...

Security feature bypass

Block BYPASS vulnerability in iQ Block Country plugin = 1.2.18 on WordPress...

WordPress plugin iQ Block Country 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

CVE-2022-41155 WordPress iQ Block Country plugin <= 1.2.18 - Block BYPASS vulnerability

Block BYPASS vulnerability in iQ Block Country plugin = 1.2.18 on WordPress...

CVE-2022-41155

CVE-2022-41155 is a Block BYPASS vulnerability in the WordPress iQ Block Country plugin, affecting versions prior to 1.2.19. The NVD indicates a critical impact (CVSSv3.1 base score 9.8; HIGH confidentiality, integrity, and availability impacts). Patch guidance from connected sources recommends u...

CVE-2022-41155 WordPress iQ Block Country plugin <= 1.2.18 - Block BYPASS vulnerability

Block BYPASS vulnerability in iQ Block Country plugin = 1.2.18 on WordPress...

PT-2022-25684 · WordPress · Iq Block Country

Name of the Vulnerable Software and Affected Versions: iQ Block Country plugin versions prior to 1.2.19 Description: A Block BYPASS vulnerability exists in the iQ Block Country plugin on WordPress, allowing potential bypass of security measures. Recommendations: For iQ Block Country plugin versio...

WordPress iQ Block Country plugin <= 1.2.18 - Block BYPASS vulnerability

Block BYPASS vulnerability was discovered by Brandon Roldan Patchstack Alliance in the WordPress iQ Block Country plugin versions = 1.2.18. Solution Update the WordPress iQ Block Country plugin to the latest available version at least 1.2.19...

WordPress Plugin iQ Block Country IP Spoofing Attack Vulnerability

WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. An IP spoofing attack vulnerability exists in WordPress plugin iQ Block Country version 1.2.13 and prior versions, which stems from not properly...

CVE-2022-1762

The iQ Block Country WordPress plugin before 1.2.20 does not properly checks HTTP headers in order to validate the origin IP address, allowing threat actors to bypass it's block feature by spoofing the headers...

CVE-2022-1762

The iQ Block Country WordPress plugin before 1.2.20 does not properly checks HTTP headers in order to validate the origin IP address, allowing threat actors to bypass it's block feature by spoofing the headers...

Design/Logic Flaw

The iQ Block Country WordPress plugin before 1.2.20 does not properly checks HTTP headers in order to validate the origin IP address, allowing threat actors to bypass it's block feature by spoofing the headers...

CVE-2022-1762

CVE-2022-1762 affects the WordPress plugin iQ Block Country prior to version 1.2.20. The root cause is improper HTTP header validation used to determine the origin IP, which allows an attacker to bypass the plugin’s block feature by spoofing headers. Public sources in the connected documents corr...

PT-2022-14094 · WordPress · Iq Block Country

Name of the Vulnerable Software and Affected Versions: iQ Block Country WordPress plugin versions prior to 1.2.20 Description: The issue allows threat actors to bypass the block feature by spoofing HTTP headers, as the plugin does not properly check these headers to validate the origin IP address...