83 matches found
CVE-2026-13335 CodePeople Post Map for Google Maps <= 1.2.6 - Authenticated (Contributor +) Stored Cross-Site Scripting via 'cpm_point' Post Meta
The CodePeople Post Map for Google Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'cpmpoint' Post Meta in all versions up to, and including, 1.2.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
CVE-2026-13335
The CodePeople Post Map for Google Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'cpmpoint' Post Meta in all versions up to, and including, 1.2.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
CVE-2017-18557
The bws-google-maps plugin before 1.3.6 for WordPress has multiple XSS issues...
CVE-2025-39465
Missing Authorization vulnerability in flippercode Advanced Google Maps wp-google-map-gold allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Advanced Google Maps: from n/a through = 5.8.4...
EUVD-2021-25707
Malware in sbrugna...
EUVD-2023-27947
Malicious code in bioql PyPI...
EUVD-2024-33214
Malicious code in bioql PyPI...
EUVD-2024-46459
Malicious code in bioql PyPI...
EUVD-2023-57466
Malicious code in bioql PyPI...
EUVD-2023-31880
Malicious code in bioql PyPI...
EUVD-2022-33791
Malicious code in bioql PyPI...
EUVD-2023-57638
Malicious code in bioql PyPI...
EUVD-2023-26827
Malicious code in bioql PyPI...
EUVD-2023-34006
Malicious code in bioql PyPI...
EUVD-2022-34685
Malicious code in bioql PyPI...
EUVD-2023-54726
Malicious code in bioql PyPI...
EUVD-2023-50433
Malicious code in bioql PyPI...
CVE-2024-5219
The Easy Google Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's file upload feature in all versions up to, and including, 1.11.15 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-lev...
CVE-2024-10621
The Simple Shortcode for Google Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's pwmap shortcode in all versions up to, and including, 1.5.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
CVE-2023-0037
The 10Web Map Builder for Google Maps WordPress plugin before 1.0.73 does not properly sanitise and escape some parameters before using them in an SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...