CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

FlipperCode Custom CSS, JS & PHP <= 2.0.7 - Remote Code Execution

Custom css-js-php WordPress plugin through 2.0.7 contains a command injection caused by unsanitized user input used in SQL query and passed to eval, letting unauthenticated attackers execute arbitrary PHP code on the server. id: CVE-2026-6433 info: name: FlipperCode Custom CSS, JS & PHP = 2.0.7 -...

7.3CVSS6.2AI score0.00966EPSS

Exploits1References4

GithubExploit•added 2026/05/16 9:29 a.m.•123 views

Exploit for CVE-2026-6433

CVE-2026-6433 — Proof of Concept FlipperCode — Custom CSS,...

7.3CVSS6.2AI score0.00966EPSS

Exploits1

Positive Technologies•added 2026/04/21 12:0 a.m.•2 views

PT-2026-33983

Name of the Vulnerable Software and Affected Versions Custom css-js-php versions prior to 2.0.8 Description The plugin fails to properly sanitize user input before incorporating it into a SQL query. The resulting output is then passed to the eval function, which enables unauthenticated users to...

7.3CVSS6.3AI score0.00966EPSS

Exploits1References7

RedhatCVE•added 2025/11/07 3:54 p.m.•2 views

CVE-2025-39465

Missing Authorization vulnerability in flippercode Advanced Google Maps wp-google-map-gold allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Advanced Google Maps: from n/a through = 5.8.4...

4.3CVSS7AI score0.00058EPSS

Exploits0References1

NVD•added 2025/11/06 4:15 p.m.•4 views

CVE-2025-39465

4.3CVSS0.00058EPSS

Exploits0References1

Cvelist•added 2025/11/06 3:53 p.m.•7 views

CVE-2025-39465 WordPress Advanced Google Maps plugin <= 5.8.4 - Broken Access Control vulnerability

4.3CVSS0.00058EPSS

Exploits0References1

EUVD•added 2025/11/06 3:53 p.m.•2 views

EUVD-2025-38029

8.4AI score0.00058EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-31880

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00051EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-27961

Malicious code in bioql PyPI...

5.9CVSS5.7AI score0.00177EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 4:51 a.m.•5 views

CVE-2023-28172

Cross-Site Request Forgery CSRF vulnerability in flippercode WordPress Plugin for Google Maps – WP MAPS formerly WP Google Map Plugin plugin = 4.4.2 versions...

8.8CVSS7.1AI score0.00051EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 2:40 a.m.•4 views

CVE-2023-23878

Auth. editor+ Stored Cross-Site Scripting XSS vulnerability in flippercode WordPress Plugin for Google Maps – WP MAPS plugin = 4.3.9 versions...

5.9CVSS5.2AI score0.00177EPSS

Exploits0References1

OSV•added 2023/11/12 11:15 p.m.•0 views

CVE-2023-28172

Cross-Site Request Forgery CSRF vulnerability in flippercode WordPress Plugin for Google Maps – WP MAPS formerly WP Google Map Plugin plugin = 4.4.2 versions...

8.8CVSS7.3AI score0.00051EPSS

Exploits0References1

CVE•added 2023/11/12 10:24 p.m.•71 views

CVE-2023-28172

CVE-2023-28172 concerns CSRF in the WordPress WP MAPS plugin (formerly WP Google Map Plugin) by flippercode, affected versions up to 4.4.2. The issue is documented as unauthenticated CSRF with low to moderate impact depending on source; Patchstack reports a fix in 4.4.3. Red Hat/NVD Wordfence ent...

8.8CVSS7.2AI score0.00051EPSS

Exploits0References1Affected Software1

OSV•added 2023/04/04 12:15 p.m.•1 views

CVE-2023-23878

Auth. editor+ Stored Cross-Site Scripting XSS vulnerability in flippercode WordPress Plugin for Google Maps – WP MAPS plugin = 4.3.9 versions...

5.4CVSS5.8AI score0.00177EPSS

Exploits0References1

Positive Technologies•added 2023/04/04 12:0 a.m.•2 views

PT-2023-19276 · Flippercode · Wp Maps Plugin

Name of the Vulnerable Software and Affected Versions: flippercode WordPress Plugin for Google Maps – WP MAPS plugin versions = 4.3.9 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability. This vulnerability affects users with editor or higher permissions. There is ...

5.9CVSS5.2AI score0.00177EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by