Vulnerability Details CVE-2024-9422
The GEO my WP WordPress plugin before 4.5, gmw-premium-settings WordPress plugin before 3.1 does not sufficiently validate files to be uploaded, which could allow attackers to upload arbitrary files such as PHP on the server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 21.0%
CVSS Severity
CVSS v3 Score 6.6
Products affected by CVE-2024-9422
-
cpe:2.3:a:geomywp:geo_my_wordpress:1.0
-
cpe:2.3:a:geomywp:geo_my_wordpress:1.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:1.1.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:1.1.2
-
cpe:2.3:a:geomywp:geo_my_wordpress:1.2
-
cpe:2.3:a:geomywp:geo_my_wordpress:1.2.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:1.2.5
-
cpe:2.3:a:geomywp:geo_my_wordpress:1.2.6
-
cpe:2.3:a:geomywp:geo_my_wordpress:1.2.7
-
cpe:2.3:a:geomywp:geo_my_wordpress:1.3
-
cpe:2.3:a:geomywp:geo_my_wordpress:1.5
-
cpe:2.3:a:geomywp:geo_my_wordpress:1.5.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:1.5.2
-
cpe:2.3:a:geomywp:geo_my_wordpress:1.6
-
cpe:2.3:a:geomywp:geo_my_wordpress:1.6.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:1.7
-
cpe:2.3:a:geomywp:geo_my_wordpress:2.0
-
cpe:2.3:a:geomywp:geo_my_wordpress:2.01
-
cpe:2.3:a:geomywp:geo_my_wordpress:2.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:2.2
-
cpe:2.3:a:geomywp:geo_my_wordpress:2.3
-
cpe:2.3:a:geomywp:geo_my_wordpress:2.4
-
cpe:2.3:a:geomywp:geo_my_wordpress:2.4.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:2.4.2
-
cpe:2.3:a:geomywp:geo_my_wordpress:2.4.2.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:2.4.3
-
cpe:2.3:a:geomywp:geo_my_wordpress:2.4.4
-
cpe:2.3:a:geomywp:geo_my_wordpress:2.4.5
-
cpe:2.3:a:geomywp:geo_my_wordpress:2.4.6
-
cpe:2.3:a:geomywp:geo_my_wordpress:2.5
-
cpe:2.3:a:geomywp:geo_my_wordpress:2.6.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:2.6.1.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:2.6.2
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.0
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.0.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.0.2
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.0.3
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.0.4
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.0.5
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.2
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.2.0.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.2.0.2
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.2.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.3
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.4
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.5
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.6
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.6.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.6.2
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.6.3
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.6.3.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.6.3.2
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.7
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.7.0.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:3.7.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:4.0
-
cpe:2.3:a:geomywp:geo_my_wordpress:4.0.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:4.0.2
-
cpe:2.3:a:geomywp:geo_my_wordpress:4.0.3
-
cpe:2.3:a:geomywp:geo_my_wordpress:4.0.4
-
cpe:2.3:a:geomywp:geo_my_wordpress:4.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:4.2
-
cpe:2.3:a:geomywp:geo_my_wordpress:4.3
-
cpe:2.3:a:geomywp:geo_my_wordpress:4.3.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:4.3.1.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:4.4
-
cpe:2.3:a:geomywp:geo_my_wordpress:4.4.0.1
-
cpe:2.3:a:geomywp:geo_my_wordpress:4.4.0.2
-
cpe:2.3:a:geomywp:geo_my_wordpress_premium_settings:*