Lucene search
K

67 matches found

Patchstack
Patchstack
added 2025/02/17 10:20 a.m.7 views

WordPress WP Google Map plugin < 1.9.4 - Admin+ Stored XSS vulnerability

Admin+ Stored XSS vulnerability discovered by Krugov Artyom in WordPress Plugin WP Google Map versions 1.9.4...

4.3CVSS6.1AI score0.00282EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2025/01/16 6:41 p.m.3 views

WordPress Google Map on Post/Page plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara Kinorth in WordPress Plugin Google Map on Post/Page versions = 1.1...

7.1CVSS6.1AI score0.0026EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/07/01 12:0 a.m.16 views

WordPress WP Google Map Plugin Plugin <= 4.6.1 is vulnerable to SQL Injection

Software WP Google Map Plugin Type Plugin Vulnerable versions = 4.6.1 Fixed in 4.6.2 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-2386 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID 6fa4ba8a185e Credits Krzysztof Zając Required privilege Contributo...

8.8CVSS6.8AI score0.00459EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/04 11:38 a.m.7 views

CVE-2023-23878 WordPress WP Google Map Plugin Plugin <= 4.3.9 is vulnerable to Cross Site Scripting (XSS)

Auth. editor+ Stored Cross-Site Scripting XSS vulnerability in flippercode WordPress Plugin for Google Maps – WP MAPS plugin = 4.3.9 versions...

5.9CVSS5.4AI score0.0038EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/03/13 12:0 a.m.11 views

WordPress WP Google Map Plugin Plugin <= 4.4.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software WP Google Map Plugin Type Plugin Vulnerable versions = 4.4.2 Fixed in 4.4.3 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-28172 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 49e753e2af88 Credits Rafie Muhammad...

8.8CVSS6.6AI score0.00301EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/01/20 12:0 a.m.11 views

WordPress WP Google Map Plugin Plugin <= 4.3.9 is vulnerable to Cross Site Scripting (XSS)

Software WP Google Map Plugin Type Plugin Vulnerable versions = 4.3.9 Fixed in 4.4.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-23878 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID a087af02892c Credits Rafshanzani Suhada...

5.9CVSS5.8AI score0.0038EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2022/03/15 12:0 a.m.25 views

WordPress WP Google Map plugin cross-site request forgery vulnerability

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. The platform supports the hosting of personal blogging sites on servers with PHP and MySQL. WordPress plugin is a WordPress open source application plugin. WordPress WP Google Map plugin version 4.2...

8.8CVSS1.5AI score0.00559EPSS
Exploits0References1
NVD
NVD
added 2022/03/11 6:15 p.m.33 views

CVE-2022-25600

Cross-Site Request Forgery CSRF vulnerability affecting Delete Marker Category, Delete Map, and Copy Map functions in WP Google Map plugin versions = 4.2.3...

8.8CVSS0.00559EPSS
Exploits0References5
Prion
Prion
added 2022/03/11 6:15 p.m.26 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability affecting Delete Marker Category, Delete Map, and Copy Map functions in WP Google Map plugin versions = 4.2.3...

6.8CVSS8.8AI score0.00559EPSS
Exploits0References5Affected Software2
CNNVD
CNNVD
added 2022/03/11 12:0 a.m.5 views

WordPress plugin WP Google Map plugin 跨站请求伪造漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. The platform supports the hosting of personal blogging sites on servers with PHP and MySQL. WordPress plugin is a WordPress open source application plugin. WordPress WP Google Map plugin version 4.2...

8.8CVSS5.5AI score0.00559EPSS
Exploits0References7
OSV
OSV
added 2022/01/25 8:15 p.m.2 views

CVE-2021-45729

The Privilege Escalation vulnerability discovered in the WP Google Map WordPress plugin versions = 1.8.0 allows authenticated low-role users to create, edit, and delete maps...

5.4CVSS5.8AI score0.00689EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/01/25 12:0 a.m.3 views

WordPress plugin 安全漏洞

WordPress plugin is a WordPress open source application plugin. WP Google Map plugin for WordPress version 1.8.0 and earlier has an elevation of privilege vulnerability that stems from an incorrect programmatic call to a high-level native procedure. An attacker could exploit the vulnerability to...

5.5CVSS5.7AI score0.00689EPSS
Exploits0References3
Patchstack
Patchstack
added 2021/07/01 12:0 a.m.24 views

WordPress WP Google Map plugin <= 1.7.6 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by Pratik Khalane in WordPress WP Google Map plugin versions = 1.7.6. Solution Update the WordPress WP Google Map plugin to the latest available version at least 1.7.7...

4.8CVSS1.7AI score0.00668EPSS
Exploits2References3Affected Software1
OSV
OSV
added 2021/03/18 3:15 p.m.6 views

CVE-2021-24130

Unvalidated input in the WP Google Map Plugin WordPress plugin, versions before 4.1.5, in the Manage Locations page within the plugin settings was vulnerable to SQL Injection through a high privileged user admin+...

7.2CVSS5.8AI score0.01416EPSS
Exploits2References1
NVD
NVD
added 2021/03/18 3:15 p.m.43 views

CVE-2021-24130

Unvalidated input in the WP Google Map Plugin WordPress plugin, versions before 4.1.5, in the Manage Locations page within the plugin settings was vulnerable to SQL Injection through a high privileged user admin+...

7.2CVSS0.01416EPSS
Exploits2References1
Prion
Prion
added 2021/03/18 3:15 p.m.16 views

Sql injection

Unvalidated input in the WP Google Map Plugin WordPress plugin, versions before 4.1.5, in the Manage Locations page within the plugin settings was vulnerable to SQL Injection through a high privileged user admin+...

6.5CVSS7AI score0.01416EPSS
Exploits2References1Affected Software1
CVE
CVE
added 2021/03/18 2:57 p.m.72 views

CVE-2021-24130

CVE-2021-24130 describes an SQL injection in the WordPress WP Google Map Plugin prior to 4.1.5, via unvalidated input on the Manage Locations page. The vulnerability requires a high-privileged user (admin+) to trigger it and can lead to exposure of sensitive database information. Affected softwar...

7.2CVSS7AI score0.01416EPSS
Exploits2References1Affected Software1
Positive Technologies
Positive Technologies
added 2021/03/18 12:0 a.m.7 views

PT-2021-15675 · WordPress · Wp-Google-Map-Plugin

Name of the Vulnerable Software and Affected Versions: WP Google Map Plugin WordPress plugin versions prior to 4.1.5 Description: The issue concerns unvalidated input in the Manage Locations page within the plugin settings, which is vulnerable to SQL Injection. This can be exploited through a hig...

7.2CVSS6.8AI score0.01416EPSS
Exploits2References5
Patchstack
Patchstack
added 2020/11/25 12:0 a.m.10 views

WordPress WP Google Map Plugin <= 4.1.3 - Authenticated SQL Injection (SQLi) vulnerability

Authenticated SQL Injection SQLi vulnerability found by Nguyen Anh Tien SunCSR in WordPress WP Google Map Plugin version = 4.1.3. Solution 2020-11-25 - we were unable to find a patched version of this plugin use at your own risk, we recommend to deactivate and delete the plugin until the patched...

2.9AI score
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2019/08/27 12:0 a.m.25 views

WordPress WP Google Map Plugin < 2.3.10 Multiple CSRF Vulnerabilities

The WordPress plugin SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:flippercode:wpgooglemap"; ifdescription...

8.8CVSS8.7AI score0.00699EPSS
Exploits0References1
Rows per page
Query Builder