Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2015-4617 | 1 Easy2map | 1 Easy2map-photos | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
Vulnerability in Easy2map-photos WordPress Plugin v1.09 MapPinImageUpload.php and MapPinIconSave.php allows path traversal when specifying file names creating files outside of the upload directory. | |||||
CVE-2015-4615 | 1 Easy2map | 1 Easy2map-photos | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
Vulnerability in Easy2map-photos WordPress Plugin v1.09 allows SQL Injection via unsanitized mapTemplateName, mapName, mapSettingsXML, parentCSSXML, photoCSSXML, mapCSSXML, mapHTML,mapID variables |