cleantalk
Vulnerabilities and Security Researches

iQ Block Country, CVE-2021-36873

CVE, Research URL

CVE-2021-36873

Home page URL

Security reports for iQ Block Country

Application

iQ Block Country

Published on
Sep 23, 2021
Research Description
Authenticated Persistent Cross-Site Scripting (XSS) vulnerability in WordPress iQ Block Country plugin (versions <= 1.2.11). Vulnerable parameter: &blockcountry_blockmessage.
Affected versions
max 1.2.12.
Status
vulnerable
Previous vulnerability researches
iQ Block Country (CVE-2022-1762) , Jun 06, 2024
iQ Block Country (CVE-2021-36873) , Jun 06, 2024
iQ Block Country (CVE-2022-41155) , Jun 06, 2024
iQ Block Country (CVE-2022-0246) , Jun 06, 2024
New vulnerability
Greenshift &#8211; animation and page builder blocks (CVE-2025-11841) , Nov 11, 2025
Range Slider AddOn for Gravity Forms (CVE-2025-49905) , Nov 11, 2025
YOP Poll (CVE-2025-62040) , Nov 11, 2025
Insert Headers and Footers Code &#8211; HT Script (CVE-2025-12112) , Nov 11, 2025
Easy Appointments (CVE-2025-49398) , Nov 11, 2025