Vulnerabilities in IP2Location
9 resultsCVE-2025-1361HIGHIP2Location Country Blocker <= 2.38.8 - Missing Authorization to Unauthenticated Information Exposure via admin_init FunctionEPSS 1.3%CVE-2024-22294MEDIUMWordPress Download IP2Location Country Blocker Plugin <= 2.33.3 is vulnerable to Sensitive Data ExposureEPSS 0.5%CVE-2023-37865MEDIUMWordPress IP2Location Country Blocker plugin <= 2.29.1 - IP Bypass Vulnerability vulnerabilityEPSS 0.4%CVE-2025-24731MEDIUMWordPress IP2Location Country Blocker plugin <= 2.38.3 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2025-1502MEDIUMIP2Location Redirection <= 1.33.3 - Missing Authorization to Unauthenticated Settings ExportEPSS 0.3%CVE-2024-32443MEDIUMWordPress IP2Location Country Blocker plugin <= 2.34.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2022-50961MEDIUMWordPress Plugin IP2Location Country Blocker 2.26.7 Stored XSSEPSS 0.2%CVE-2025-32644HIGHWordPress IP2Location World Clock Plugin <= 1.1.9 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-39455HIGHWordPress IP2Location Variables plugin <= 2.9.5 - CSRF to Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%