Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2023-06539
HistoryMar 02, 2022 - 12:00 a.m.

WordPress Google Maps plugin cross-site request forgery vulnerability

2022-03-0200:00:00
China National Vulnerability Database
www.cnvd.org.cn
8

0.001 Low

EPSS

Percentile

30.5%

JSON

WordPress is the Wordpress Foundation’s suite of blogging platforms developed using the PHP language. A cross-site request forgery vulnerability exists in versions of the WordPress Google Maps plugin prior to 1.8.4. The vulnerability stems from the plugin’s failure to perform CSRF checks in most of its AJAX operations, which could be exploited by an attacker to cause a logged-in administrator to delete any post and update the plugin’s settings.

CPENameOperatorVersion
wordpress google maps pluginlt1.8.4

Related

patchstack 1
prion 1
nvd 1
wpexploit 1
wpvulndb 1
cve 1
cvelist 1
patchstack
patchstack
WordPress WP Google Map plugin <= 1.8.3 - Arbitrary Post Deletion and Plugin's Settings Update via Cross-Site Request Forgery (CSRF) vulnerability
2022-01-27 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-02-28 09:15:00
nvd
nvd
CVE-2021-25081
2022-02-28 09:15:08
wpexploit
wpexploit
WP Google Map < 1.8.4 - Arbitrary Post Deletion and Plugin's Settings Update via CSRF
2022-01-27 00:00:00
wpvulndb
wpvulndb
WP Google Map < 1.8.4 - Arbitrary Post Deletion and Plugin's Settings Update via CSRF
2022-01-27 00:00:00
cve
cve
CVE-2021-25081
2022-02-28 09:15:08
cvelist
cvelist
CVE-2021-25081 WP Google Map < 1.8.4 - Arbitrary Post Deletion and Plugin's Settings Update via CSRF
2022-02-28 09:06:35

0.001 Low

EPSS

Percentile

30.5%

JSON
Related for CNVD-2023-06539
patchstack1prion1nvd1wpexploit1wpvulndb1cve1cvelist1