EUVD-2024-50181

Malicious code in bioql PyPI...

CVE-2024-9886

The WP Baidu Map plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'baidumap' shortcode in all versions up to, and including, 1.2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

CVE-2024-9886

The WP Baidu Map plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'baidumap' shortcode in all versions up to, and including, 1.2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

CVE-2024-9886 WP Baidu Map <= 1.2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

The WP Baidu Map plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'baidumap' shortcode in all versions up to, and including, 1.2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

CVE-2024-9886

CVE-2024-9886 affects the WordPress plugin WP Baidu Map, where the stored XSS vulnerability can be triggered via the plugin’s baidu_map shortcode in versions up to 1.2.2. The flaw arises from insufficient input sanitization and output escaping on user-supplied attributes, enabling authenticated u...

WordPress plugin WP Baidu Map 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

PT-2024-39912 · WordPress · Wp Baidu Map

Name of the Vulnerable Software and Affected Versions: WP Baidu Map plugin for WordPress versions up to, and including, 1.2.2 Description: The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in the baidu map shortcode. This allows authenticated...

WordPress WP Baidu Map plugin <= 1.2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Shortcode vulnerability discovered by theviper17y in WordPress Plugin WP Baidu Map versions = 1.2.2...

WordPress WP Baidu Map Plugin <= 1.2.2 is vulnerable to Cross Site Scripting (XSS)

Software WP Baidu Map Type Plugin Vulnerable versions = 1.2.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9886 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 5869ce63afea Credits theviper17y Required privileg...

CVE-2021-44302

BaiCloud-cms v2.5.7 was discovered to contain multiple SQL injection vulnerabilities via the tongji and baidumap parameters in /user/ztconfig.php...

Baicloud Cms 安全漏洞

Baicloud Cms is a Chinese lightweight open source content management system Cms based on Php and MySQL, running on Linux, Windows and other platforms. BaiCloud cms v2.5.7 suffers from a SQL injection vulnerability that allows attackers to pass the tongji and baidumap parameters in...

Aptar CMS has a flawed logic vulnerability

Aptar CMS website management system adopts PHP+MYSQL technology, supports pseudo-static function, can generate google and baidu maps, supports custom url, keywords and description, and facilitates SEO search. Aptar CMS has a logic flaw vulnerability that can be exploited by attackers to compromis...