CVE-2025-11365 WP Google Map Plugin <= 1.0 - Authenticated (Contributor+) SQL Injection

The WP Google Map Plugin plugin for WordPress is vulnerable to blind SQL Injection via the 'id' parameter of the 'googlemap' shortcode in all versions up to, and including, 1.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query...

WordPress WP Google Map Plugin plugin <= 1.0 - Authenticated (Contributor+) SQL Injection vulnerability

Authenticated Contributor+ SQL Injection vulnerability discovered by Peter Thaleikis in WordPress Plugin WP Google Map versions = 1.0...

EUVD-2017-8896

Malware in sbrugna...

EUVD-2015-9149

Malware in sbrugna...

EUVD-2016-1872

Malware in sbrugna...

EUVD-2021-11044

Malware in sbrugna...

EUVD-2021-11379

Malware in sbrugna...

EUVD-2023-35403

Malicious code in bioql PyPI...

EUVD-2024-50181

Malicious code in bioql PyPI...

EUVD-2023-51372

Malicious code in bioql PyPI...

EUVD-2023-12236

Malicious code in bioql PyPI...

EUVD-2023-51865

Malicious code in bioql PyPI...

EUVD-2022-30260

Malicious code in bioql PyPI...

CVE-2025-57960 WordPress Travel Map Plugin <= 1.0.3 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in TravelMap Travel Map travelmap-blog allows Cross Site Request Forgery.This issue affects Travel Map: from n/a through = 1.0.3...

WordPress plugin Travel Map 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site request...

CVE-2025-9123

The CBX Map for Google Map & OpenStreetMap plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the popup heading and location address parameters in all versions up to, and including, 2.0.1 due to insufficient input sanitization and output escaping. This makes it possible for...

CVE-2025-9123

CVE-2025-9123 affects the CBX Map for Google Map & OpenStreetMap WordPress plugin. The stored XSS vulnerability exists in the popup heading and location address parameters in all versions up to and including 1.1.12, caused by insufficient input sanitization and output escaping. Authenticated user...

CVE-2025-9123 CBX Map for Google Map & OpenStreetMap <= 2.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

The CBX Map for Google Map & OpenStreetMap plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the popup heading and location address parameters in all versions up to, and including, 2.0.1 due to insufficient input sanitization and output escaping. This makes it possible for...

PT-2025-37141

The CBX Map for Google Map & OpenStreetMap plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the popup heading and location address parameters in all versions up to, and including, 1.1.12 due to insufficient input sanitization and output escaping. This makes it possible for...

CVE-2025-8622

The Flexible Map plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Flexible Maps shortcode in all versions up to, and including, 1.18.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...