Lucene search
K

67 matches found

CNVD
CNVD
added 2019/08/15 12:0 a.m.3 views

WordPress wp-google-map-plugin plugin cross-site request forgery vulnerability

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. wp-google-map-plugin plugin is a Google Maps plugin used in it. A cross-site request forgery vulnerability exists in th...

8.8CVSS6.7AI score0.00699EPSS
Exploits0References1
CNVD
CNVD
added 2019/08/15 12:0 a.m.2 views

WordPress wp-google-map-plugin plugin cross-site request forgery vulnerability (CNVD-2019-28881)

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. wp-google-map-plugin plugin is a Google Maps plugin used in it. A cross-site request forgery vulnerability exists in th...

8.8CVSS6.7AI score0.00699EPSS
Exploits0References1
Prion
Prion
added 2019/08/14 4:15 p.m.17 views

Cross site request forgery (csrf)

The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit map feature...

6.8CVSS7.2AI score0.00699EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/08/14 3:24 p.m.18 views

CVE-2015-9307

The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit location feature...

8.8AI score0.00699EPSS
Exploits0References2
CVE
CVE
added 2019/08/14 3:24 p.m.65 views

CVE-2015-9307

CVE-2015-9307 affects the WordPress plugin wp-google-map-plugin prior to version 2.3.10. The vulnerability is a CSRF flaw in the add/edit location feature, caused by insufficient request verification. Impact is partial confidentiality/integrity/availability according to CVSS 2.0/3.1 metrics; expl...

8.8CVSS8.7AI score0.00699EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2019/08/14 3:23 p.m.66 views

CVE-2015-9308

The CVE-2015-9308 entry concerns the WordPress wp-google-map-plugin before version 2.3.10, which has a CSRF flaw in the add/edit map feature. The issue is documented across multiple sources (NVD, Red Hat, CNVD, WPVulnDB, OpenVAS, PRION, etc.), all indicating CSRF in the map management functionali...

8.8CVSS8.7AI score0.00699EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/08/14 3:22 p.m.21 views

CVE-2015-9309

The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit category feature...

8.8AI score0.00699EPSS
Exploits0References2
CVE
CVE
added 2019/08/14 3:22 p.m.68 views

CVE-2015-9309

The CVE-2015-9309 entry concerns the WordPress plugin wp-google-map-plugin, which prior to version 2.3.10 has a CSRF vulnerability in the add/edit category feature. Public details from multiple sources confirm the affected software/versions and the CSRF flaw, with CVSS scores indicating medium to...

8.8CVSS8.7AI score0.00699EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2019/08/14 12:0 a.m.4 views

PT-2019-7268 · WordPress · Wp-Google-Map-Plugin

Name of the Vulnerable Software and Affected Versions: wp-google-map-plugin versions prior to 2.3.10 Description: The issue concerns a CSRF vulnerability in the add/edit category feature of the wp-google-map-plugin plugin for WordPress. Recommendations: For versions prior to 2.3.10, update to...

8.8CVSS8.6AI score0.00699EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2019/08/14 12:0 a.m.4 views

PT-2019-7267 · WordPress · Wp-Google-Map-Plugin

Name of the Vulnerable Software and Affected Versions: wp-google-map-plugin versions prior to 2.3.10 Description: The issue concerns a CSRF flaw in the add/edit map feature of the wp-google-map-plugin. No information is provided about the estimated number of potentially affected devices or...

8.8CVSS8.5AI score0.00699EPSS
Exploits0References7
CNVD
CNVD
added 2019/08/14 12:0 a.m.3 views

WordPress wp-google-map-plugin plugin cross-site scripting vulnerability (CNVD-2019-27642)

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. wp-google-map-plugin plugin is a Google Maps plugin used in it. A cross-site scripting vulnerability exists in WordPres...

6.1CVSS6.2AI score0.00978EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/08/14 12:0 a.m.5 views

PT-2019-7266 · WordPress · Wp-Google-Map-Plugin

Name of the Vulnerable Software and Affected Versions: wp-google-map-plugin versions prior to 2.3.10 Description: The issue concerns a CSRF flaw in the add/edit location feature of the wp-google-map-plugin. No information is provided about the estimated number of potentially affected devices or...

8.8CVSS8.5AI score0.00699EPSS
Exploits0References7
Prion
Prion
added 2019/08/12 3:15 p.m.12 views

Cross site scripting

The wp-google-map-plugin plugin before 3.1.2 for WordPress has XSS...

4.3CVSS7.2AI score0.00978EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/08/12 2:52 p.m.25 views

CVE-2016-10878

The wp-google-map-plugin plugin before 3.1.2 for WordPress has XSS...

6.4AI score0.00978EPSS
Exploits0References2
CVE
CVE
added 2019/08/12 2:52 p.m.52 views

CVE-2016-10878

The vulnerability CVE-2016-10878 affects the WordPress plugin wp-google-map-plugin

6.1CVSS6.4AI score0.00978EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2019/08/12 2:51 p.m.49 views

CVE-2015-9305

CVE-2015-9305 affects the WordPress plugin wp-google-map-plugin prior to version 2.3.7, with a Cross-Site Scripting (XSS) vulnerability involving the add_query_arg() and remove_query_arg() functions. Root cause is improper handling/validation of client-side data in the plugin, enabling injected s...

6.1CVSS6AI score0.0093EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2019/08/12 12:0 a.m.4 views

PT-2019-7264 · WordPress · Wp-Google-Map-Plugin

Name of the Vulnerable Software and Affected Versions: wp-google-map-plugin versions prior to 2.3.7 Description: The issue is related to Cross-Site Scripting XSS and involves the add query arg and remove query arg functions. Recommendations: For versions prior to 2.3.7, update to version 2.3.7 or...

6.1CVSS5.9AI score0.0093EPSS
Exploits0References5
CNVD
CNVD
added 2018/06/28 12:0 a.m.1 views

WordPress Plugin Google Map SQL Injection Vulnerability

WordPress is a blogging platform developed using the PHP language. Users can set up their own websites on servers that support PHP and MySQL databases. A SQL injection vulnerability exists in the WordPress plugin Google Map. An attacker can exploit the vulnerability by injecting special vectors...

7.9AI score
Exploits0References1
CNVD
CNVD
added 2018/06/15 12:0 a.m.1 views

Multiple SQL Injection Vulnerabilities in WordPress WP Google Map Plugin

WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. Multiple SQL injection vulnerabilities exist in the WordPress WP Google Map plugin, which can be exploited by attackers to...

7.8AI score
Exploits0References1
0day.today
0day.today
added 2018/06/13 12:0 a.m.16 views

WordPress Google Map Plugin < 4.0.4 - SQL Injection Vulnerability

Exploit for php platform in category web applications Title: WordPress Google Map Plugin getresults Vulnerable Variable: $GET'order' Vulnerable URL: http://vulnerablesite.com/wp-admin/admin.php?page=wpgmpmanagelocation&orderby=locationaddress&order=asc PROCEDURE...

0.3AI score
Exploits0
Rows per page
Query Builder