CVE-2025-6572 OpenStreetMap for Gutenberg and WPBakery Page Builder <= 1.2.0 - Contributor+ Stored XSS

The OpenStreetMap for Gutenberg and WPBakery Page Builder formerly Visual Composer WordPress plugin through 1.2.0 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above...

CVE-2025-6572 OpenStreetMap for Gutenberg and WPBakery Page Builder <= 1.2.0 - Contributor+ Stored XSS

The OpenStreetMap for Gutenberg and WPBakery Page Builder formerly Visual Composer WordPress plugin through 1.2.0 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above...

CVE-2025-6572

CVE-2025-6572 affects the WordPress plugin OpenStreetMap for Gutenberg and WPBakery Page Builder (formerly Visual Composer) up to and including version 1.2.0. The issue is that the plugin does not validate and escape certain block options before outputting them in a page/post where the block is e...

WordPress plugin OpenStreetMap for Gutenberg and WPBakery Page Builder 安全漏洞

WordPress OpenStreetMap for Gutenberg and WPBakery Page Builder plugin mainly provides the function of embedding interactive maps in the page, supporting customized locations, map styles, marker points and so on. The WordPress OpenStreetMap for Gutenberg and WPBakery Page Builder plugin suffers...

PT-2025-32348 · WordPress · Wpbakery Page Builder +1

Name of the Vulnerable Software and Affected Versions: OpenStreetMap for Gutenberg and WPBakery Page Builder formerly Visual Composer versions through 1.2.0 Description: The OpenStreetMap for Gutenberg and WPBakery Page Builder formerly Visual Composer WordPress plugin does not validate and escap...

CVE-2024-8991

The OSM – OpenStreetMap plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's osmmap and osmmapv3 shortcodes in all versions up to, and including, 6.1.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

CVE-2024-22297

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Codeboxr CBX Map for Google Map & OpenStreetMap allows Stored XSS.This issue affects CBX Map for Google Map & OpenStreetMap: from n/a through 1.1.11...

CVE-2024-11827

The Out of the Block: OpenStreetMap plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ootbquery shortcode in all versions up to, and including, 2.8.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

CVE-2024-52355

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MiKa OSM osm.This issue affects OSM: from n/a through = 6.1.2...

CVE-2025-47669

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Sabuj Kundu CBX Map for Google Map & OpenStreetMap cbxgooglemap allows DOM-Based XSS.This issue affects CBX Map for Google Map & OpenStreetMap: from n/a through = 1.1.12...

WordPress CBX Map for Google Map & OpenStreetMap plugin <= 1.1.12 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by zaim in WordPress Plugin CBX Map for Google Map & OpenStreetMap versions = 1.1.12...

CVE-2025-47669

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Sabuj Kundu CBX Map for Google Map & OpenStreetMap cbxgooglemap allows DOM-Based XSS.This issue affects CBX Map for Google Map & OpenStreetMap: from n/a through = 1.1.12...

CVE-2025-47669 WordPress CBX Map for Google Map & OpenStreetMap plugin <= 1.1.12 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Sabuj Kundu CBX Map for Google Map & OpenStreetMap cbxgooglemap allows DOM-Based XSS.This issue affects CBX Map for Google Map & OpenStreetMap: from n/a through = 1.1.12...

CVE-2025-47669

CVE-2025-47669 affects the WordPress plugin CBX Map for Google Map & OpenStreetMap (versions 1.1.12 and earlier). The issue is a DOM-based XSS caused by improper input neutralization during web page generation. Affected product: CBX Map for Google Map & OpenStreetMap. Impact per provided data: Cr...

WordPress plugin CBX Map for Google Map & OpenStreetMap 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

CVE-2025-31557

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MiKa OSM osm allows DOM-Based XSS.This issue affects OSM: from n/a through = 6.1.13...

WordPress OSM plugin <= 6.1.13 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin OSM versions = 6.1.13...

CVE-2025-31557

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MiKa OSM osm allows DOM-Based XSS.This issue affects OSM: from n/a through = 6.1.13...

CVE-2025-31557

CVE-2025-31557 (OSM – OpenStreetMap) is an authenticated stored cross-site scripting vulnerability in the OSM WordPress plugin, affecting OpenStreetMap versions up to 6.1.6. The EU/ENISA entry confirms the issue as Stored XSS and indicates Patch/Remediation status as Unpatched in public advisorie...

CVE-2025-31557 WordPress OSM – OpenStreetMap plugin <= 6.1.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MiKa OSM – OpenStreetMap allows DOM-Based XSS. This issue affects OSM – OpenStreetMap: from n/a through 6.1.6...