← back
CVE-2021-24720

GeoDirectory < 2.1.1.3 - Authenticated Stored Cross-Site Scripting (XSS)

EPSS 0.9%CWE-79
The GeoDirectory Business Directory WordPress plugin before 2.1.1.3 was vulnerable to Authenticated Stored Cross-Site Scripting (XSS).
Affected products
Unknown · Business Directory Plugin | GeoDirectory

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/BigTiger2020/word-press/blob/main/WrodPress%20Plugin%20GeoDirectory%E2%80%94%E2%80%94Stored%20Cross-Site%20Scripting%20.mdhttps://plugins.trac.wordpress.org/changeset/2596452/geodirectoryhttps://wpscan.com/vulnerability/9de5cc51-f64c-4475-a0f4-d932dc4364a6