GeoDirectory
Paolo
Developer
2.8.156
Latest version
10,000
Installations
No date
Last updated
Vulnerability history
0 present
15 patched
5 Mitigation rules
- Cross Site Request Forgery (CSRF) vulnerability<= 2.8.14923/01/2026
- Missing Authorization to Authenticated (Author+) Arbitrary Image Attachment vulnerability<= 2.8.13912/11/2025
- Unauthenticated SQL Injection vulnerability<= 2.8.9725/07/2025
- Contributor+ Stored XSS vulnerability< 2.8.12011/07/2025
- Authenticated (Subscriber+) Stored Cross-Site Scripting via Display_name Parameter vulnerability<= 2.8.9710/02/2025
- Cross Site Scripting (XSS) vulnerability<= 2.3.8430/12/2024
- Cross Site Scripting (XSS) vulnerability<= 2.3.8024/10/2024
- Broken Access Control vulnerability<= 2.3.7028/08/2024
- SQL Injection vulnerability<= 2.3.6107/08/2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via 'gd_single_tabs' Shortcode vulnerability<= 2.3.4823/04/2024
- SQL Injection vulnerability<= 2.3.2821/12/2023
- Admin+ SQLi vulnerability< 2.2.2401/02/2023
- Contributor+ Stored XSS via Shortcode vulnerability< 2.2.2229/12/2022
- CSV Injection vulnerability<= 2.2.1921/12/2022
- Authenticated Stored Cross-Site Scripting (XSS) vulnerability<= 2.1.1.202/09/2021