5 matches found
CVE-2023-6697
creationtimestamp| type| source ---|---|--- 2024-01-24 15:26:49+00:00| seen| https://t.me/ctinow/172834 2024-02-17 19:16:24+00:00| seen| https://t.me/ctinow/187023 2024-12-14 05:38:37+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2023/CVE-2023-6697.yam...
CVE-2023-6697
The WP Go Maps formerly WP Google Maps plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the map id parameter in all versions up to, and including, 9.0.28 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to...
CVE-2023-6697
The WP Go Maps formerly WP Google Maps plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the map id parameter in all versions up to, and including, 9.0.28 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to...
CVE-2023-6697
WP Go Maps (formerly WP Google Maps) for WordPress is affected by a Reflected XSS in map_id across all versions up to 9.0.28 due to insufficient input sanitization and output escaping. This can allow unauthenticated attackers to inject arbitrary scripts into pages executed by users who click mani...
WordPress WP Go Maps Plugin <= 9.0.28 is vulnerable to Cross Site Scripting (XSS)
Software WP Go Maps Type Plugin Vulnerable versions = 9.0.28 Fixed in 9.0.29 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-6697 Patch priority Medium CVSS severity Medium 7.1 Developer WP Go Maps PSID a5d68fb003d8 Credits Nex Team Required privileg...