3 matches found
EUVD-2024-49673
Malicious code in bioql PyPI...
CVE-2024-9028
The WP GPX Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'sgpx' shortcode in all versions up to, and including, 1.7.08 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...
CVE-2012-6649
The CVE-2012-6649 affects WordPress WP GPX Maps Plugin 1.1.21 and is caused by an improper/unrestricted file upload, enabling remote attackers to execute arbitrary PHP code on the server. Impact: remote code execution with web‑server context; vulnerability is tied to the wp-gpx-maps plugin. Remed...