GeoDirectory
Paolo
Developer
2.8.148
Latest version
10,000
Installations
No date
Last updated
Vulnerability history
0 present
14 fixed
5 Mitigation rules
- Missing Authorization to Authenticated (Author+) Arbitrary Image Attachment vulnerability<= 2.8.139Nov 12, 2025
- Unauthenticated SQL Injection vulnerability<= 2.8.97Jul 25, 2025
- Contributor+ Stored XSS vulnerability< 2.8.120Jul 11, 2025
- Authenticated (Subscriber+) Stored Cross-Site Scripting via Display_name Parameter vulnerability<= 2.8.97Feb 10, 2025
- Cross Site Scripting (XSS) vulnerability<= 2.3.84Dec 30, 2024
- Cross Site Scripting (XSS) vulnerability<= 2.3.80Oct 24, 2024
- Broken Access Control vulnerability<= 2.3.70Aug 28, 2024
- SQL Injection vulnerability<= 2.3.61Aug 7, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via 'gd_single_tabs' Shortcode vulnerability<= 2.3.48Apr 23, 2024
- SQL Injection vulnerability<= 2.3.28Dec 21, 2023
- Admin+ SQLi vulnerability< 2.2.24Feb 1, 2023
- Contributor+ Stored XSS via Shortcode vulnerability< 2.2.22Dec 29, 2022
- CSV Injection vulnerability<= 2.2.19Dec 21, 2022
- Authenticated Stored Cross-Site Scripting (XSS) vulnerability<= 2.1.1.2Sep 2, 2021