Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
de-baat store locator plus vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2021-24289
There is functionality in the Store Locator Plus for WordPress plugin up to and including 5.5.14 that made it possible for authenticated users to update their user meta data to become an administrator on any site using the plugin.
De-baat Store Locator Plus
4.3
CVSSv2
CVE-2021-24290
There are several endpoints in the Store Locator Plus for WordPress plugin up to and including 5.5.15 that could allow unauthenticated attackers the ability to inject malicious JavaScript into pages.
De-baat Store Locator Plus
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started