Critical severity9.8NVD Advisory· Published Jun 21, 2021· Updated Jun 17, 2026
CVE-2021-24361
CVE-2021-24361
Description
In the Location Manager WordPress plugin before 2.1.0.10, the AJAX action gd_popular_location_list did not properly sanitise or validate some of its POST parameters, which are then used in a SQL statement, leading to unauthenticated SQL Injection issues.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <2.1.0.10
- AyeCode Ltd/Location Managerv5Range: 2.1.0.10
Patches
Vulnerability mechanics
References
2- wpscan.com/vulnerability/5aff50fc-ac96-4076-a07c-bb145ae37025nvdExploitThird Party Advisory
- wpgeodirectory.com/downloads/location-manager/nvdProductVendor Advisory
News mentions
0No linked articles in our index yet.