Cyberhobo: >> Geo Mashup >> 1.1.1 Security Vulnerabilities
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Dylan Kuhn Geo Mashup allows Stored XSS.This issue affects Geo Mashup: from n/a through 1.13.12.
CVSS Score
6.5
EPSS Score
0.001
Published
2024-09-17
The Geo Mashup plugin before 1.10.4 for WordPress has insufficient sanitization of post editor and other user input.
CVSS Score
9.8
EPSS Score
0.015
Published
2018-07-16
Cross-site scripting (XSS) vulnerability in the geo search widget in the Geo Mashup plugin before 1.8.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the search key.
CVSS Score
4.3
EPSS Score
0.004
Published
2015-02-02