CVE-2025-1361 | ip2location IP2Location Country Blocker Plugin up to 2.38.8 on WordPress Setting admin_init improper authorization

Inserito da Angelo Barbosa | Feb 22, 2025 | CVE

A vulnerability was found in ip2location IP2Location Country Blocker Plugin up to 2.38.8 on WordPress and classified as critical. Affected by this issue is the function admin_init of the component Setting Handler. The manipulation leads to improper authorization.

This vulnerability is handled as CVE-2025-1361. The attack may be launched remotely. There is no exploit available.

CVE-2025-1361 | ip2location IP2Location Country Blocker Plugin up to 2.38.8 on WordPress Setting admin_init improper authorization

Post correlati

CVE-2024-56211 | DeluxeThemes Userpro Plugin up to 5.1.9 on WordPress authorization

CVE-2024-26214 | Microsoft Windows up to Server 2022 23H2 WDAC SQL Server ODBC Driver heap-based overflow

CVE-2024-7657 | Gila CMS 1.10.9 HTTP POST Request page content cross site scripting

CVE-2024-53226 | Linux Kernel up to 6.12.1 RDMA hns_roce_map_mr_sg sg_offset null pointer dereference