Vulnerabilities > Ayecode > Geodirectory > 2.3.61

DATE CVE VULNERABILITY TITLE RISK
2025-01-02 CVE-2024-56259 Cross-site Scripting vulnerability in Ayecode Geodirectory
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AyeCode - WP Business Directory Plugins GeoDirectory allows Stored XSS.This issue affects GeoDirectory: from n/a through 2.3.84.
network
low complexity
ayecode CWE-79
5.4
2024-11-01 CVE-2024-43981 Missing Authorization vulnerability in Ayecode Geodirectory
Missing Authorization vulnerability in AyeCode – WP Business Directory Plugins GeoDirectory allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GeoDirectory: from n/a through 2.3.70.
network
low complexity
ayecode CWE-862
8.8
2024-10-28 CVE-2024-50437 Cross-site Scripting vulnerability in Ayecode Geodirectory
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in AyeCode GeoDirectory allows Stored XSS.This issue affects GeoDirectory: from n/a through 2.3.80.
network
low complexity
ayecode CWE-79
5.4
2024-08-18 CVE-2024-43145 Unspecified vulnerability in Ayecode Geodirectory
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in AyeCode Ltd GeoDirectory.This issue affects GeoDirectory: from n/a through 2.3.61.
network
low complexity
ayecode
8.8