Vulnerabilities > Webence

DATE CVE VULNERABILITY TITLE RISK
2022-11-19 CVE-2022-41155 Unspecified vulnerability in Webence IQ Block Country
Block BYPASS vulnerability in iQ Block Country plugin <= 1.2.18 on WordPress.
network
low complexity
webence
critical
9.8
2022-06-13 CVE-2022-1762 Unspecified vulnerability in Webence IQ Block Country
The iQ Block Country WordPress plugin before 1.2.20 does not properly checks HTTP headers in order to validate the origin IP address, allowing threat actors to bypass it's block feature by spoofing the headers.
network
low complexity
webence
7.5
2022-04-11 CVE-2022-0246 Unspecified vulnerability in Webence IQ Block Country
The settings of the iQ Block Country WordPress plugin before 1.2.13 can be exported or imported using its backup functionality.
network
low complexity
webence
4.9
2021-09-23 CVE-2021-36873 Cross-site Scripting vulnerability in Webence IQ Block Country
Authenticated Persistent Cross-Site Scripting (XSS) vulnerability in WordPress iQ Block Country plugin (versions <= 1.2.11).
network
low complexity
webence CWE-79
5.4