EUVD-2023-58030

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Google Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting due to input issues

Reporter	Title	Published	Views	Family All 12
CNNVD	WordPress Plugin Very Simple Google Maps Cross-Site Scripting Vulnerability	25 Oct 202300:00	–	cnnvd
CVE	CVE-2023-5744	24 Oct 202313:53	–	cve
Cvelist	CVE-2023-5744 Very Simple Google Maps <= 2.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode	24 Oct 202313:53	–	cvelist
NVD	CVE-2023-5744	25 Oct 202318:17	–	nvd
Patchstack	WordPress Very Simple Google Maps Plugin <= 2.9 is vulnerable to Cross Site Scripting (XSS)	26 Oct 202300:00	–	patchstack
Prion	Cross site scripting	25 Oct 202318:17	–	prion
Positive Technologies	PT-2023-32298 · WordPress · The Very Simple Google Maps	24 Oct 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-5744	23 May 202502:42	–	redhatcve
Vulnrichment	CVE-2023-5744 Very Simple Google Maps <= 2.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode	24 Oct 202313:53	–	vulnrichment
Wordfence Blog	Over 100 WordPress Repository Plugins Affected by Shortcode-based Stored Cross-Site Scripting	12 Dec 202317:18	–	wordfence

[
  {
    "enisaIdVendor": [
      {
        "id": "59838dd8-710f-3e18-94a1-24c52e59f893",
        "vendor": {
          "name": "masterk"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "16fb333a-bf48-39d0-ac6d-942a04e376fb",
        "product": {
          "name": "Very Simple Google Maps"
        },
        "product_version": "* ≤2.9"
      }
    ]
  }
]

Source	Link
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/fca7837c-ad24-44ce-b073-7df3f8bc4300
plugins	www.plugins.trac.wordpress.org/browser/very-simple-google-maps/trunk/very-simple-google-maps.php
plugins	www.plugins.trac.wordpress.org/changeset/2982539/very-simple-google-maps

03 Oct 2025 20:07Current

6.4Medium risk

Vulners AI Score6.4

CVSS 3.15.4 - 6.4

EPSS0.00127

SSVC