VYPR

Geo Controller plugin

by WordPress

CVEs (1)

  • CVE-2024-7380MedSep 5, 2024
    risk 0.28cvss 4.3epss 0.00

    The Geo Controller plugin for WordPress is vulnerable to unauthorized menu creation/deletion due to missing capability checks on the ajax__geolocate_menu and ajax__geolocate_remove_menu functions in all versions up to, and including, 8.7.3. This makes it possible for…