Latest Ayecode Vulnerabilities

CVE-2023-50845
WordPress GeoDirectory Plugin <= 2.3.28 is vulnerable to SQL Injection
<=2.3.28
CVE-2022-47442
WordPress UsersWP Plugin <= 1.2.3.9 is vulnerable to CSV Injection
Ayecode Userswp<1.2.3.10
CVE-2023-2813
All of the above Aapna WordPress theme through 1.3, Anand WordPress theme through 1.2, Anfaust WordPress theme through 1.1, Arendelle WordPress theme before 1.1.13, Atlast Business WordPress theme thr...
Ajaydsouza Connections Reloaded<=3.1
Archimidismertzanos Atlast Business<=1.5.8.5
Archimidismertzanos Fashionable Store<=1.3.4
Archimidismertzanos Nothing Personal<=1.0.7
Arthousewebdesign Brain Power<=1.2
Asmedia Moseter<=1.3.1
and 40 more
CVE-2022-4775
The GeoDirectory WordPress plugin before 2.2.22 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as con...
Ayecode Geodirectory<2.2.22
CVE-2022-29453
Cross-Site Request Forgery (CSRF) vulnerability in API KEY for Google Maps plugin <= 1.2.1 at WordPress leading to Google Maps API key update.
Ayecode Api Key For Google Maps<=1.2.1
CVE-2022-0442
The UsersWP WordPress plugin before 1.2.3.1 is missing access controls when updating a user avatar, and does not make sure file names for user avatars are unique, allowing a logged in user to overwrit...
Ayecode Userswp<1.2.3.1
CVE-2021-24720
The GeoDirectory Business Directory WordPress plugin before 2.1.1.3 was vulnerable to Authenticated Stored Cross-Site Scripting (XSS).
Ayecode Geodirectory<2.1.1.3
CVE-2021-24369
In the GetPaid WordPress plugin before 2.3.4, users with the contributor role and above can create a new Payment Form, however the Label and Help Text input fields were not getting sanitized properly....
Ayecode Getpaid<2.3.4
CVE-2021-24361
In the Location Manager WordPress plugin before 2.1.0.10, the AJAX action gd_popular_location_list did not properly sanitise or validate some of its POST parameters, which are then used in a SQL state...
Ayecode Location Manager<2.1.0.10

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203