CVE-2025-11813

The Responsive iframe GoogleMap plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'responsivemap' shortcode in all versions up to, and including, 1.0.2. This is due to insufficient input sanitization and output escaping on the 'width' and 'height' attributes. This makes it...

CVE-2025-11813 Responsive iframe GoogleMap <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

The Responsive iframe GoogleMap plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'responsivemap' shortcode in all versions up to, and including, 1.0.2. This is due to insufficient input sanitization and output escaping on the 'width' and 'height' attributes. This makes it...

WordPress Responsive iframe GoogleMap plugin <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Shortcode vulnerability discovered by zakaria in WordPress Plugin Responsive iframe GoogleMap versions = 1.0.2...

EUVD-2008-6647

Malware in sbrugna...

EUVD-2018-18332

Malware in sbrugna...

ZH GoogleMap, 8.4.0.0, SQL Injection

ZH GoogleMap from zhuk.cc, versions 8.4.0.0 and previous, SQL Injection Resolution: update to 8.4.1.0 Update notice: http://zhuk.cc/2018/02/21/zh-googlemap-security-update-2/...

Zh GoogleMap SQL Injection Vulnerability

Joomla! is the U.S. Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds, site search and other features. Zh GoogleMap is used in one of the Google Maps component. A SQL injection vulnerability exists in version 8.4.0.0 of Joomla! A...

Joomla! Zh GoogleMap 8.4.0.0 SQL Injection

input name="id" value="-11 UNION ALL SELECT...

Sql injection

SQL Injection exists in the Zh GoogleMap 8.4.0.0 component for Joomla! via the id parameter in a getPlacemarkDetails, getPlacemarkHoverText, getPathHoverText, or getPathDetails request...

CVE-2018-6582

SQL Injection exists in the Zh GoogleMap 8.4.0.0 component for Joomla! via the id parameter in a getPlacemarkDetails, getPlacemarkHoverText, getPathHoverText, or getPathDetails request...

CVE-2018-6582

Summary: CVE-2018-6582 affects the Zh GoogleMap Joomla! extension (versions 8.4.0.0 and earlier). The vulnerability is an SQL injection in the component that can be triggered via the id parameter in requests such as getPlacemarkDetails, getPlacemarkHoverText, getPathHoverText, and getPathDetails....

CVE-2018-6582

SQL Injection exists in the Zh GoogleMap 8.4.0.0 component for Joomla! via the id parameter in a getPlacemarkDetails, getPlacemarkHoverText, getPathHoverText, or getPathDetails request...

Joomla Zh GoogleMap 8.4.0.0 Component - SQL Injection Vulnerability

Exploit for php platform in category web applications input name="id" value="-11 UNION ALL SELECT...

Joomla! Component Zh GoogleMap 8.4.0.0 - SQL Injection

input name="id" value="-11 UNION ALL SELECT...

crowdtraining.me XSS vulnerability

Vulnerable URL: http://www.crowdtraining.me/wp-content/themes/crowdtraining/googlemap.php?url=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 11:39 GMT Vulnerability type:| XSS Vulnerability status:...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Prestashop before 1.5 allow remote attackers to inject arbitrary web script or HTML via the 1 address or 2 relativbasedir parameter to modules/mondialrelay/googlemap.php; the 3 relativbasedir, 4 Pays, 5 Ville, 6 CP, 7 Poids, 8 Action, or 9 num...

EMO Realty Manager 'cat1' Parameter SQL Injection Vulnerability

EMO Realty Manager Software is prone to an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2010-5006

SQL injection vulnerability in googlemap/index.php in EMO Realty Manager allows remote attackers to execute arbitrary SQL commands via the cat1 parameter...

Sql injection

SQL injection vulnerability in googlemap/index.php in EMO Realty Manager allows remote attackers to execute arbitrary SQL commands via the cat1 parameter...

CVE-2010-5006

SQL injection vulnerability in googlemap/index.php in EMO Realty Manager allows remote attackers to execute arbitrary SQL commands via the cat1 parameter...