67 matches found
WordPress wp-google-map-plugin plugin cross-site request forgery vulnerability
WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. wp-google-map-plugin plugin is a Google Maps plugin used in it. A cross-site request forgery vulnerability exists in th...
WordPress wp-google-map-plugin plugin cross-site request forgery vulnerability (CNVD-2019-28881)
WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. wp-google-map-plugin plugin is a Google Maps plugin used in it. A cross-site request forgery vulnerability exists in th...
Cross site request forgery (csrf)
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit map feature...
CVE-2015-9307
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit location feature...
CVE-2015-9307
CVE-2015-9307 affects the WordPress plugin wp-google-map-plugin prior to version 2.3.10. The vulnerability is a CSRF flaw in the add/edit location feature, caused by insufficient request verification. Impact is partial confidentiality/integrity/availability according to CVSS 2.0/3.1 metrics; expl...
CVE-2015-9308
The CVE-2015-9308 entry concerns the WordPress wp-google-map-plugin before version 2.3.10, which has a CSRF flaw in the add/edit map feature. The issue is documented across multiple sources (NVD, Red Hat, CNVD, WPVulnDB, OpenVAS, PRION, etc.), all indicating CSRF in the map management functionali...
CVE-2015-9309
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit category feature...
CVE-2015-9309
The CVE-2015-9309 entry concerns the WordPress plugin wp-google-map-plugin, which prior to version 2.3.10 has a CSRF vulnerability in the add/edit category feature. Public details from multiple sources confirm the affected software/versions and the CSRF flaw, with CVSS scores indicating medium to...
PT-2019-7268 · WordPress · Wp-Google-Map-Plugin
Name of the Vulnerable Software and Affected Versions: wp-google-map-plugin versions prior to 2.3.10 Description: The issue concerns a CSRF vulnerability in the add/edit category feature of the wp-google-map-plugin plugin for WordPress. Recommendations: For versions prior to 2.3.10, update to...
PT-2019-7267 · WordPress · Wp-Google-Map-Plugin
Name of the Vulnerable Software and Affected Versions: wp-google-map-plugin versions prior to 2.3.10 Description: The issue concerns a CSRF flaw in the add/edit map feature of the wp-google-map-plugin. No information is provided about the estimated number of potentially affected devices or...
WordPress wp-google-map-plugin plugin cross-site scripting vulnerability (CNVD-2019-27642)
WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. wp-google-map-plugin plugin is a Google Maps plugin used in it. A cross-site scripting vulnerability exists in WordPres...
PT-2019-7266 · WordPress · Wp-Google-Map-Plugin
Name of the Vulnerable Software and Affected Versions: wp-google-map-plugin versions prior to 2.3.10 Description: The issue concerns a CSRF flaw in the add/edit location feature of the wp-google-map-plugin. No information is provided about the estimated number of potentially affected devices or...
Cross site scripting
The wp-google-map-plugin plugin before 3.1.2 for WordPress has XSS...
CVE-2016-10878
The wp-google-map-plugin plugin before 3.1.2 for WordPress has XSS...
CVE-2016-10878
The vulnerability CVE-2016-10878 affects the WordPress plugin wp-google-map-plugin
CVE-2015-9305
CVE-2015-9305 affects the WordPress plugin wp-google-map-plugin prior to version 2.3.7, with a Cross-Site Scripting (XSS) vulnerability involving the add_query_arg() and remove_query_arg() functions. Root cause is improper handling/validation of client-side data in the plugin, enabling injected s...
PT-2019-7264 · WordPress · Wp-Google-Map-Plugin
Name of the Vulnerable Software and Affected Versions: wp-google-map-plugin versions prior to 2.3.7 Description: The issue is related to Cross-Site Scripting XSS and involves the add query arg and remove query arg functions. Recommendations: For versions prior to 2.3.7, update to version 2.3.7 or...
WordPress Plugin Google Map SQL Injection Vulnerability
WordPress is a blogging platform developed using the PHP language. Users can set up their own websites on servers that support PHP and MySQL databases. A SQL injection vulnerability exists in the WordPress plugin Google Map. An attacker can exploit the vulnerability by injecting special vectors...
Multiple SQL Injection Vulnerabilities in WordPress WP Google Map Plugin
WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. Multiple SQL injection vulnerabilities exist in the WordPress WP Google Map plugin, which can be exploited by attackers to...
WordPress Google Map Plugin < 4.0.4 - SQL Injection Vulnerability
Exploit for php platform in category web applications Title: WordPress Google Map Plugin getresults Vulnerable Variable: $GET'order' Vulnerable URL: http://vulnerablesite.com/wp-admin/admin.php?page=wpgmpmanagelocation&orderby=locationaddress&order=asc PROCEDURE...