CVE-2021-24720
N/A
N/A
Summary
The GeoDirectory Business Directory WordPress plugin before 2.1.1.3 was vulnerable to Authenticated Stored Cross-Site Scripting (XSS).
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Unknown | Business Directory Plugin | GeoDirectory | 2.1.1.3 < 2.1.1.3 |
Weaknesses
- CWE-79: CWE-79 Cross-site Scripting (XSS)
ADP Enrichment
CVE Program Container
Additional References
- https://wpscan.com/vulnerability/9de5cc51-f64c-4475-a0f4-d932dc4364a6
- https://github.com/BigTiger2020/word-press/blob/main/WrodPress%20Plugin%20GeoDirectory%E2%80%94%E2%80%94Stored%20Cross-Site%20Scripting%20.md
- https://plugins.trac.wordpress.org/changeset/2596452/geodirectory
References
- https://wpscan.com/vulnerability/9de5cc51-f64c-4475-a0f4-d932dc4364a6
- https://github.com/BigTiger2020/word-press/blob/main/WrodPress%20Plugin%20GeoDirectory%E2%80%94%E2%80%94Stored%20Cross-Site%20Scripting%20.md
- https://plugins.trac.wordpress.org/changeset/2596452/geodirectory
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.