cleantalk
Vulnerabilities and Security Researches

DirectoryPress – Business Directory And Classified Ad Listing, CVE-2024-49633

CVE, Research URL

CVE-2024-49633

Home page URL

Security reports for DirectoryPress – Business Directory And Classified Ad Listing

Application

DirectoryPress – Business Directory And Classified Ad Listing

Published on
Jan 07, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Designinvento DirectoryPress allows Reflected XSS.This issue affects DirectoryPress: from n/a through 3.6.19.
Affected versions
Min -, max 3.6.19.
Status
vulnerable
Previous vulnerability researches
DirectoryPress Frontend (CVE-2024-10581) , Feb 16, 2025
DirectoryPress – Business Directory And Classified Ad Listing (CVE-2024-49633) , Jan 09, 2025
DirectoryPress – Business Directory And Classified Ad Listing (CVE-2023-37967) , Jun 10, 2024
DirectoryPress – Business Directory And Classified Ad Listing (CVE-2024-10584) , Dec 25, 2024
DirectoryPress – Business Directory And Classified Ad Listing (CVE-2024-38755) , Jul 15, 2024
New vulnerability
Question Answer (CVE-2025-32646) , Apr 18, 2025
PropertyHive (CVE-2025-39577) , Apr 18, 2025
WP-BusinessDirectory – Business directory plugin for WordPress (CVE-2025-32630) , Apr 18, 2025
WordPress WP-Advanced-Search (CVE-2025-39538) , Apr 18, 2025
Most And Least Read Posts Widget (CVE-2025-39549) , Apr 18, 2025