All 7 CVE vulnerabilities found in Geo Controller, with AI-generated Chinese analysis, references, and POCs.
Vendor: INFINITUM FORM
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-51513 | WordPress Geo Controller plugin <= 8.5.2 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.5 | Medium | 2026-01-05 |
| CVE-2025-62109 | WordPress Geo Controller plugin <= 8.9.4 - Sensitive Data Exposure vulnerability CWE-201 | 5.3 | Medium | 2025-12-09 |
| CVE-2024-7381 | Geo Controller <= 8.6.9 - Missing Authorization to Unauthenticated Shortcode Execution CWE-862 | 5.3 | Medium | 2024-09-05 |
| CVE-2024-7380 | Geo Controller <= 8.7.3 - Missing Authorization to Authenticated (Subscriber+) Menu Creation/Deletion CWE-862 | 4.3 | Medium | 2024-09-05 |
| CVE-2024-3591 | WordPress Geo Controller < 8.6.5 - PHP Object Injection | 9.8AI | CriticalAI | 2024-05-01 |
| CVE-2024-30451 | WordPress Geo Controller plugin <= 8.6.4 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.5 | Medium | 2024-03-29 |
| CVE-2024-30227 | WordPress Geo Controller plugin <= 8.6.4 - PHP Object Injection vulnerability CWE-502 | 9.0 | Critical | 2024-03-28 |
All 7 known CVE vulnerabilities affecting Geo Controller with full Chinese analysis, references, and POCs where available.