178 matches found
CVE-2021-24130
Unvalidated input in the WP Google Map Plugin WordPress plugin, versions before 4.1.5, in the Manage Locations page within the plugin settings was vulnerable to SQL Injection through a high privileged user admin+...
CVE-2021-24130
Unvalidated input in the WP Google Map Plugin WordPress plugin, versions before 4.1.5, in the Manage Locations page within the plugin settings was vulnerable to SQL Injection through a high privileged user admin+...
Sql injection
Unvalidated input in the WP Google Map Plugin WordPress plugin, versions before 4.1.5, in the Manage Locations page within the plugin settings was vulnerable to SQL Injection through a high privileged user admin+...
CVE-2021-24130
CVE-2021-24130 describes an SQL injection in the WordPress WP Google Map Plugin prior to 4.1.5, via unvalidated input on the Manage Locations page. The vulnerability requires a high-privileged user (admin+) to trigger it and can lead to exposure of sensitive database information. Affected softwar...
PT-2021-15675 · WordPress · Wp-Google-Map-Plugin
Name of the Vulnerable Software and Affected Versions: WP Google Map Plugin WordPress plugin versions prior to 4.1.5 Description: The issue concerns unvalidated input in the Manage Locations page within the plugin settings, which is vulnerable to SQL Injection. This can be exploited through a hig...
WordPress WP Google Map Plugin <= 4.1.3 - Authenticated SQL Injection (SQLi) vulnerability
Authenticated SQL Injection SQLi vulnerability found by Nguyen Anh Tien SunCSR in WordPress WP Google Map Plugin version = 4.1.3. Solution 2020-11-25 - we were unable to find a patched version of this plugin use at your own risk, we recommend to deactivate and delete the plugin until the patched...
WordPress WP Google Map Plugin < 2.3.10 Multiple CSRF Vulnerabilities
The WordPress plugin SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:flippercode:wpgooglemap"; ifdescription...
WordPress wp-google-map-plugin plugin cross-site request forgery vulnerability (CNVD-2019-28881)
WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. wp-google-map-plugin plugin is a Google Maps plugin used in it. A cross-site request forgery vulnerability exists in th...
WordPress wp-google-map-plugin plugin cross-site request forgery vulnerability
WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. wp-google-map-plugin plugin is a Google Maps plugin used in it. A cross-site request forgery vulnerability exists in th...
Cross site request forgery (csrf)
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit map feature...
CVE-2015-9307
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit location feature...
CVE-2015-9307
CVE-2015-9307 affects the WordPress plugin wp-google-map-plugin prior to version 2.3.10. The vulnerability is a CSRF flaw in the add/edit location feature, caused by insufficient request verification. Impact is partial confidentiality/integrity/availability according to CVSS 2.0/3.1 metrics; expl...
CVE-2015-9308
The CVE-2015-9308 entry concerns the WordPress wp-google-map-plugin before version 2.3.10, which has a CSRF flaw in the add/edit map feature. The issue is documented across multiple sources (NVD, Red Hat, CNVD, WPVulnDB, OpenVAS, PRION, etc.), all indicating CSRF in the map management functionali...
CVE-2015-9309
The CVE-2015-9309 entry concerns the WordPress plugin wp-google-map-plugin, which prior to version 2.3.10 has a CSRF vulnerability in the add/edit category feature. Public details from multiple sources confirm the affected software/versions and the CSRF flaw, with CVSS scores indicating medium to...
CVE-2015-9309
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit category feature...
PT-2019-7267 · WordPress · Wp-Google-Map-Plugin
Name of the Vulnerable Software and Affected Versions: wp-google-map-plugin versions prior to 2.3.10 Description: The issue concerns a CSRF flaw in the add/edit map feature of the wp-google-map-plugin. No information is provided about the estimated number of potentially affected devices or...
PT-2019-7266 · WordPress · Wp-Google-Map-Plugin
Name of the Vulnerable Software and Affected Versions: wp-google-map-plugin versions prior to 2.3.10 Description: The issue concerns a CSRF flaw in the add/edit location feature of the wp-google-map-plugin. No information is provided about the estimated number of potentially affected devices or...
PT-2019-7268 · WordPress · Wp-Google-Map-Plugin
Name of the Vulnerable Software and Affected Versions: wp-google-map-plugin versions prior to 2.3.10 Description: The issue concerns a CSRF vulnerability in the add/edit category feature of the wp-google-map-plugin plugin for WordPress. Recommendations: For versions prior to 2.3.10, update to...
WordPress wp-google-map-plugin plugin cross-site scripting vulnerability (CNVD-2019-27642)
WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. wp-google-map-plugin plugin is a Google Maps plugin used in it. A cross-site scripting vulnerability exists in WordPres...
Cross site scripting
The wp-google-map-plugin plugin before 3.1.2 for WordPress has XSS...