Skip to main content

Iq Block Country

4 CVEs product

Monthly

CVE-2022-41155 CRITICAL Act Now

Block BYPASS vulnerability in iQ Block Country plugin <= 1.2.18 on WordPress. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass WordPress Iq Block Country
NVD
CVSS 3.1
9.8
EPSS
0.7%
CVE-2022-1762 HIGH POC This Week

The iQ Block Country WordPress plugin before 1.2.20 does not properly checks HTTP headers in order to validate the origin IP address, allowing threat actors to bypass it's block feature by spoofing. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass WordPress Iq Block Country
NVD WPScan
CVSS 3.1
7.5
EPSS
1.2%
CVE-2022-0246 MEDIUM POC This Month

The settings of the iQ Block Country WordPress plugin before 1.2.13 can be exported or imported using its backup functionality. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Information Disclosure Iq Block Country
NVD WPScan
CVSS 3.1
4.9
EPSS
3.3%
CVE-2021-36873 MEDIUM POC This Month

Authenticated Persistent Cross-Site Scripting (XSS) vulnerability in WordPress iQ Block Country plugin (versions <= 1.2.11). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

WordPress XSS Iq Block Country
NVD
CVSS 3.1
5.4
EPSS
1.2%
EPSS 1% CVSS 9.8
CRITICAL Act Now

Block BYPASS vulnerability in iQ Block Country plugin <= 1.2.18 on WordPress. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass WordPress Iq Block Country
NVD
EPSS 1% CVSS 7.5
HIGH POC This Week

The iQ Block Country WordPress plugin before 1.2.20 does not properly checks HTTP headers in order to validate the origin IP address, allowing threat actors to bypass it's block feature by spoofing. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass WordPress Iq Block Country
NVD WPScan
EPSS 3% CVSS 4.9
MEDIUM POC This Month

The settings of the iQ Block Country WordPress plugin before 1.2.13 can be exported or imported using its backup functionality. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Information Disclosure Iq Block Country
NVD WPScan
EPSS 1% CVSS 5.4
MEDIUM POC This Month

Authenticated Persistent Cross-Site Scripting (XSS) vulnerability in WordPress iQ Block Country plugin (versions <= 1.2.11). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

WordPress XSS Iq Block Country
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy