Wpexperts Wp Multi Store Locator
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Wpexperts Wp Multi Store Locator.
By the Year
In 2026 there have been 0 vulnerabilities in Wpexperts Wp Multi Store Locator. Last year, in 2025 Wp Multi Store Locator had 2 security vulnerabilities published. Right now, Wp Multi Store Locator is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 2 | 5.75 |
| 2024 | 0 | 0.00 |
| 2023 | 1 | 5.40 |
It may take a day or so for new Wp Multi Store Locator vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Wpexperts Wp Multi Store Locator Security Vulnerabilities
WP Multi Store Locator 2.4.7 Reflected XSS via Unescaped HTML
CVE-2025-24680
6.1 - Medium
- January 27, 2025
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in WpMultiStoreLocator WP Multi Store Locator allows Reflected XSS. This issue affects WP Multi Store Locator: from n/a through 2.4.7.
XSS
WP Multi Store Locator <=2.4.1 Stored XSS via sanitization flaw
CVE-2024-12475
5.4 - Medium
- January 04, 2025
The WP Multi Store Locator plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 2.4.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
XSS
WP Multi Store Locator 2.4 Stored XSS via Shortcode Attributes
CVE-2023-0152
5.4 - Medium
- June 05, 2023
The WP Multi Store Locator WordPress plugin through 2.4 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Wpexperts Wp Multi Store Locator or by Wpexperts? Click the Watch button to subscribe.
