Vulnerabilities > Geomywp

DATE CVE VULNERABILITY TITLE RISK
2023-12-31 CVE-2023-52134 Unspecified vulnerability in Geomywp GEO MY Wordpress
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eyal Fitoussi GEO my WordPress.This issue affects GEO my WordPress: from n/a through 4.0.2.
network
low complexity
geomywp
7.2
2023-10-10 CVE-2023-5467 Cross-site Scripting vulnerability in Geomywp GEO MY Wordpress
The GEO my WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 4.0 due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
geomywp CWE-79
5.4