Lucene search
+L

132 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-47110

Malicious code in bioql PyPI...

6.4CVSS6.5AI score0.00367EPSS
Exploits0References3
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-58989

Malicious code in bioql PyPI...

6.5CVSS8.8AI score0.00795EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/05/23 11:40 a.m.11 views

CVE-2025-24742

Cross-Site Request Forgery CSRF vulnerability in WPGMaps WP Go Maps wp-google-maps.This issue affects WP Go Maps: from n/a through = 9.0.40...

8.8CVSS7.2AI score0.00179EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 9:58 a.m.12 views

CVE-2024-1582

The WP Go Maps formerly WP Google Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wpgmza' shortcode in all versions up to, and including, 9.0.32 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible...

6.4CVSS5.8AI score0.0032EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 9:19 a.m.5 views

CVE-2024-5994

The WP Go Maps formerly WP Google Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Custom JS option in versions up to, and including, 9.0.38. This makes it possible for authenticated attackers that have been explicitly granted permissions by an administrator, with...

6.4CVSS6AI score0.00367EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 5:57 a.m.8 views

CVE-2023-4839

The WP Go Maps for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in versions up to, and including, 9.0.32 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to...

4.8CVSS6AI score0.00342EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 2:7 a.m.10 views

CVE-2023-6697

The WP Go Maps formerly WP Google Maps plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the map id parameter in all versions up to, and including, 9.0.28 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to...

6.1CVSS6.3AI score0.0104EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 2:5 a.m.13 views

CVE-2023-6777

The WP Go Maps formerly WP Google Maps plugin for WordPress is vulnerable to unauthenticated API key disclosure in versions up to, and including, 9.0.34 due to the plugin adding the API key to several plugin files. This makes it possible for unauthenticated attackers to obtain the developer's...

6.5CVSS6.8AI score0.00795EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 12:54 a.m.20 views

CVE-2022-47595

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in WP Go Maps formerly WP Google Maps plugin = 9.0.15 versions...

6.5CVSS6.8AI score0.00754EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/05 7:54 a.m.6 views

CVE-2024-29931

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPGMaps WP Go Maps wp-google-maps.This issue affects WP Go Maps: from n/a through = 9.0.29...

7.1CVSS7.2AI score0.00753EPSS
Exploits0References1
osv
osv
added 2025/01/27 3:15 p.m.6 views

CVE-2025-24742

Cross-Site Request Forgery CSRF vulnerability in WP Go Maps formerly WP Google Maps WP Go Maps. This issue affects WP Go Maps: from n/a through 9.0.40...

8.8CVSS7.3AI score0.00179EPSS
Exploits0References1
nvd
nvd
added 2025/01/27 3:15 p.m.29 views

CVE-2025-24742

Cross-Site Request Forgery CSRF vulnerability in WPGMaps WP Go Maps wp-google-maps.This issue affects WP Go Maps: from n/a through = 9.0.40...

8.8CVSS0.00179EPSS
Exploits0References1
cve
cve
added 2025/01/27 2:22 p.m.53 views

CVE-2025-24742

CVE-2025-24742 covers a Cross-Site Request Forgery (CSRF) in the WordPress plugin WP Go Maps (formerly WP Google Maps). Affected are WP Go Maps versions up to and including 9.0.40. The vulnerability enables CSRF on actions performed by authenticated users; no exploitation details are provided in ...

8.8CVSS7.2AI score0.00179EPSS
Exploits0References1Affected Software1
cnnvd
cnnvd
added 2025/01/27 12:0 a.m.7 views

WordPress plugin WP Go Maps 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request...

8.8CVSS8.5AI score0.00179EPSS
Exploits0References1
patchstack
patchstack
added 2025/01/24 11:47 a.m.9 views

WordPress WP Google Maps plugin <= 9.0.40 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Joshua Chan in WordPress Plugin WP Go Maps versions = 9.0.40...

8.8CVSS7AI score0.00179EPSS
Exploits0Affected Software1
nvd
nvd
added 2024/06/14 7:15 a.m.36 views

CVE-2024-5994

The WP Go Maps formerly WP Google Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Custom JS option in versions up to, and including, 9.0.38. This makes it possible for authenticated attackers that have been explicitly granted permissions by an administrator, with...

6.4CVSS0.00367EPSS
Exploits0References3
osv
osv
added 2024/06/14 7:15 a.m.3 views

CVE-2024-5994

The WP Go Maps formerly WP Google Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Custom JS option in versions up to, and including, 9.0.38. This makes it possible for authenticated attackers that have been explicitly granted permissions by an administrator, with...

5.4CVSS5.9AI score0.00367EPSS
Exploits0References3
cve
cve
added 2024/06/14 6:53 a.m.63 views

CVE-2024-5994

CVE-2024-5994 affects the WP Go Maps (formerly WP Google Maps) WordPress plugin. The vulnerability is a Stored Cross-Site Scripting (XSS) via the Custom JS option in versions up to 9.0.38. It allows authenticated users with contributor-level permissions and above (granted by an administrator) to ...

6.4CVSS6.1AI score0.00367EPSS
Exploits0References3Affected Software1
patchstack
patchstack
added 2024/06/14 3:9 a.m.7 views

Wordpress WP Go Maps plugin <= 9.0.38 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Tim Coen in WordPress Plugin WP Go Maps versions = 9.0.38...

5.8AI score
Exploits0References1Affected Software1
cnnvd
cnnvd
added 2024/06/14 12:0 a.m.6 views

WordPress plugin WP Go Maps security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

6.4CVSS6.1AI score0.00367EPSS
Exploits0References4
Rows per page
Query Builder