Geomywp Geo My Wordpress — known CVE vulnerabilities
Every CVE whose affected-product data names Geomywp Geo My Wordpress, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2024-6330 — CVSS 9.8 (critical): The GEO my WP WordPress plugin before 4.5.0.2 does not prevent unauthenticated attackers from including arbitrary files in PHP's execution…
CVE-2023-52134 — CVSS 7.6 (high): Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eyal Fitoussi GEO my WordPress.This…
CVE-2024-9422 — CVSS 6.6 (medium): The GEO my WP WordPress plugin before 4.5, gmw-premium-settings WordPress plugin before 3.1 does not sufficiently validate files to be…
CVE-2023-5467 — CVSS 6.4 (medium): The GEO my WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 4.0…