Lucene search
+L

84 matches found

vulnrichment
vulnrichment
added 2023/09/12 1:52 a.m.10 views

CVE-2023-4887 Google Maps Plugin by Intergeo <= 2.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

The Google Maps Plugin by Intergeo plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'intergeo' shortcode in versions up to, and including, 2.3.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS6.8AI score0.00345EPSS
Exploits0References2
cnnvd
cnnvd
added 2023/09/12 12:0 a.m.6 views

WordPress plugin Google Maps Plugin by Intergeo Cross-site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. uninstall is one of the plugins used to completely uninstall WordPress. WordPress...

6.4CVSS6AI score0.00345EPSS
Exploits0References4
patchstack
patchstack
added 2023/09/11 12:0 a.m.12 views

WordPress Google Maps Plugin by Intergeo Plugin <= 2.3.2 is vulnerable to Cross Site Scripting (XSS)

Software Google Maps Plugin by Intergeo Type Plugin Vulnerable versions = 2.3.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-4887 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID a4236d4e874a Credits Lana Codes...

6.4CVSS6AI score0.00345EPSS
Exploits0References2Affected Software1
ptsecurity
ptsecurity
added 2023/09/11 12:0 a.m.11 views

PT-2023-30993 · Intergeo · Googlemaps Plugin

Name of the Vulnerable Software and Affected Versions: The Google Maps Plugin by Intergeo for WordPress versions up to, and including, 2.3.2 Description: The issue is related to Stored Cross-Site Scripting via the intergeo shortcode due to insufficient input sanitization and output escaping on...

6.4CVSS5.6AI score0.00345EPSS
Exploits0References7
vulnrichment
vulnrichment
added 2023/04/23 10:19 a.m.12 views

CVE-2023-23827 WordPress Google Maps v3 Shortcode Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Cross-Site Scripting XSS vulnerability in Google Maps v3 Shortcode plugin = 1.2.1 versions...

6.5CVSS5.7AI score0.0037EPSS
Exploits0References1
osv
osv
added 2023/04/23 10:15 a.m.3 views

CVE-2023-22698

Auth. contributor+ Cross-Site Scripting XSS vulnerability in Jason Bobich Theme Blvd Responsive Google Maps plugin = 1.0.2 versions...

5.4CVSS6.1AI score
Exploits0References1
cve
cve
added 2023/04/23 9:32 a.m.35 views

CVE-2023-22698

CVE-2023-22698 affects WordPress Theme Blvd Responsive Google Maps Plugin (versions

6.5CVSS5.5AI score0.00383EPSS
Exploits0References1Affected Software1
ptsecurity
ptsecurity
added 2023/04/23 12:0 a.m.4 views

PT-2023-19238 · WordPress · Google Maps V3 Shortcode

Name of the Vulnerable Software and Affected Versions: Google Maps v3 Shortcode plugin versions prior to 1.2.2 Description: The issue is related to a Cross-Site Scripting XSS vulnerability that affects users with contributor or higher permissions. This type of vulnerability allows attackers to...

6.5CVSS5.6AI score0.0037EPSS
Exploits0References3
cnnvd
cnnvd
added 2023/04/06 12:0 a.m.8 views

WordPress plugin Maps Widget for Google Maps 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...

4.8CVSS6.6AI score0.00377EPSS
Exploits0References3
cnnvd
cnnvd
added 2023/04/04 12:0 a.m.6 views

WordPress plugin Google Maps – WP MAPS 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

5.9CVSS5.4AI score0.0038EPSS
Exploits0References2
osv
osv
added 2023/03/23 2:15 p.m.6 views

CVE-2023-23864

Auth. contributor+ Cross-Site Scripting XSS vulnerability in Michael Aronoff Very Simple Google Maps plugin = 2.8.4 versions...

5.4CVSS6.1AI score0.00393EPSS
Exploits0References1
prion
prion
added 2023/03/23 2:15 p.m.15 views

Cross site scripting

Auth. contributor+ Cross-Site Scripting XSS vulnerability in Michael Aronoff Very Simple Google Maps plugin = 2.8.4 versions...

4.9CVSS5.3AI score0.00393EPSS
Exploits0References1Affected Software1
cve
cve
added 2023/03/23 12:44 p.m.62 views

CVE-2023-23864

CVE-2023-23864 affects the WordPress plugin Very Simple Google Maps (Michael Aronoff) and is due to an XSS flaw in the plugin’s handling of shortcode attributes. Concretely, versions up to and including 2.8.4 are vulnerable; exploitation requires authenticated access from contributors or higher. ...

6.5CVSS5.4AI score0.00393EPSS
Exploits0References1Affected Software1
osv
osv
added 2022/06/15 4:15 p.m.5 views

CVE-2022-29453

Cross-Site Request Forgery CSRF vulnerability in API KEY for Google Maps plugin = 1.2.1 at WordPress leading to Google Maps API key update...

4.3CVSS5.8AI score0.00415EPSS
Exploits0References2
cve
cve
added 2022/06/15 3:16 p.m.584 views

CVE-2022-29453

The CVE-2022-29453 entry concerns the WordPress plugin API KEY for Google Maps (versions

5.4CVSS4.7AI score0.00415EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2022/06/15 3:16 p.m.8 views

CVE-2022-29453 WordPress API KEY for Google Maps plugin <= 1.2.1 - CSRF vulnerability leading to Google Maps API key update

Cross-Site Request Forgery CSRF vulnerability in API KEY for Google Maps plugin = 1.2.1 at WordPress leading to Google Maps API key update...

5.4CVSS5.5AI score0.00415EPSS
Exploits0References2
attackerkb
attackerkb
added 2022/06/08 10:50 a.m.3 views

CVE-2022-29453

Cross-Site Request Forgery CSRF vulnerability in API KEY for Google Maps plugin = 1.2.1 at WordPress leading to Google Maps API key update...

5.4CVSS4.9AI score0.00415EPSS
Exploits0References3Affected Software1
cnnvd
cnnvd
added 2022/02/28 12:0 a.m.10 views

WordPress plugin Maps 跨站请求伪造漏洞

WordPress is the Wordpress Foundation's suite of blogging platforms developed using the PHP language. A cross-site request forgery vulnerability exists in versions of the WordPress Google Maps plugin prior to 1.8.4. The vulnerability stems from the plugin's failure to perform CSRF checks in most ...

6.5CVSS5.5AI score0.00566EPSS
Exploits2References3
cnnvd
cnnvd
added 2022/02/28 12:0 a.m.6 views

WordPress 跨站请求伪造漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A security vulnerability exists in the WordPress plugin Google Maps, which stems from the WordPress...

5.7CVSS6.2AI score0.0042EPSS
Exploits2References4
osv
osv
added 2021/09/09 12:15 p.m.3 views

CVE-2021-36870

Multiple Authenticated Persistent Cross-Site Scripting XSS vulnerabilities in WordPress WP Google Maps plugin versions = 8.1.12. Vulnerable parameters: &datasetname, &wpgmzagdprretentionpurpose, &wpgmzagdprcompanyname, &name 2, &name, &polyname 2, &polyname, &address...

5.4CVSS5.8AI score0.00585EPSS
Exploits0References2
Rows per page
Query Builder