WordPress Plugin Vulnerabilities
iQ Block Country < 1.2.12 - Admin+ Stored Cross-Site Scripting
Description
The plugin does not escape its blockcountry_blockmessage setting, which could lead to Stored Cross-Site Scripting issue
Affects Plugins
References
CVE
Classification
Type
XSS
OWASP top 10
CWE
CVSS
Miscellaneous
Verified
No
WPVDB ID
Timeline
Publicly Published
2021-07-17 (about 2 years ago)
Added
2021-09-23 (about 2 years ago)
Last Updated
2022-04-09 (about 2 years ago)