31 matches found
CVE-2016-10878
The wp-google-map-plugin plugin before 3.1.2 for WordPress has XSS...
EUVD-2015-9149
Malware in sbrugna...
EUVD-2016-1872
Malware in sbrugna...
EUVD-2021-11044
Malware in sbrugna...
EUVD-2022-30260
Malicious code in bioql PyPI...
CVE-2021-24130
Unvalidated input in the WP Google Map Plugin WordPress plugin, versions before 4.1.5, in the Manage Locations page within the plugin settings was vulnerable to SQL Injection through a high privileged user admin+...
CVE-2015-9308
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit map feature...
CVE-2015-9307
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit location feature...
CVE-2015-9309
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit category feature...
WordPress WP Google Map Plugin Plugin <= 4.6.1 is vulnerable to SQL Injection
Software WP Google Map Plugin Type Plugin Vulnerable versions = 4.6.1 Fixed in 4.6.2 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-2386 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID 6fa4ba8a185e Credits Krzysztof Zając Required privilege Contributo...
CVE-2022-25600
Cross-Site Request Forgery CSRF vulnerability affecting Delete Marker Category, Delete Map, and Copy Map functions in WP Google Map plugin versions = 4.2.3...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability affecting Delete Marker Category, Delete Map, and Copy Map functions in WP Google Map plugin versions = 4.2.3...
CVE-2021-24130
Unvalidated input in the WP Google Map Plugin WordPress plugin, versions before 4.1.5, in the Manage Locations page within the plugin settings was vulnerable to SQL Injection through a high privileged user admin+...
Sql injection
Unvalidated input in the WP Google Map Plugin WordPress plugin, versions before 4.1.5, in the Manage Locations page within the plugin settings was vulnerable to SQL Injection through a high privileged user admin+...
CVE-2021-24130
CVE-2021-24130 describes an SQL injection in the WordPress WP Google Map Plugin prior to 4.1.5, via unvalidated input on the Manage Locations page. The vulnerability requires a high-privileged user (admin+) to trigger it and can lead to exposure of sensitive database information. Affected softwar...
PT-2021-15675 · WordPress · Wp-Google-Map-Plugin
Name of the Vulnerable Software and Affected Versions: WP Google Map Plugin WordPress plugin versions prior to 4.1.5 Description: The issue concerns unvalidated input in the Manage Locations page within the plugin settings, which is vulnerable to SQL Injection. This can be exploited through a hig...
WordPress WP Google Map Plugin < 2.3.10 Multiple CSRF Vulnerabilities
The WordPress plugin SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:flippercode:wpgooglemap"; ifdescription...
WordPress wp-google-map-plugin plugin cross-site request forgery vulnerability (CNVD-2019-28881)
WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. wp-google-map-plugin plugin is a Google Maps plugin used in it. A cross-site request forgery vulnerability exists in th...
Cross site request forgery (csrf)
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit map feature...
CVE-2015-9307
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit location feature...