Total
11 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2023-28172 | 1 Flippercode | 1 Wp Google Map | 2024-11-21 | N/A | 5.4 MEDIUM |
Cross-Site Request Forgery (CSRF) vulnerability in flippercode WordPress Plugin for Google Maps – WP MAPS (formerly WP Google Map Plugin) plugin <= 4.4.2 versions. | |||||
CVE-2023-23878 | 1 Flippercode | 1 Wp Google Map | 2024-11-21 | N/A | 5.9 MEDIUM |
Auth. (editor+) Stored Cross-Site Scripting (XSS) vulnerability in flippercode WordPress Plugin for Google Maps – WP MAPS plugin <= 4.3.9 versions. | |||||
CVE-2022-25600 | 2 Fedoraproject, Flippercode | 2 Fedora, Wp Google Map | 2024-11-21 | 6.8 MEDIUM | 5.4 MEDIUM |
Cross-Site Request Forgery (CSRF) vulnerability affecting Delete Marker Category, Delete Map, and Copy Map functions in WP Google Map plugin (versions <= 4.2.3). | |||||
CVE-2021-24502 | 1 Flippercode | 1 Wp Google Map | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
The WP Google Map WordPress plugin before 1.7.7 did not sanitise or escape the Map Title before outputting them in the page, leading to a Stored Cross-Site Scripting issue by high privilege users, even when the unfiltered_html capability is disallowed | |||||
CVE-2021-24130 | 1 Flippercode | 1 Wp Google Map | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
Unvalidated input in the WP Google Map Plugin WordPress plugin, versions before 4.1.5, in the Manage Locations page within the plugin settings was vulnerable to SQL Injection through a high privileged user (admin+). | |||||
CVE-2018-0577 | 1 Flippercode | 1 Wp Google Map | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
Cross-site scripting vulnerability in WP Google Map Plugin prior to version 4.0.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||||
CVE-2016-10878 | 1 Flippercode | 1 Wp Google Map | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
The wp-google-map-plugin plugin before 3.1.2 for WordPress has XSS. | |||||
CVE-2015-9309 | 1 Flippercode | 1 Wp Google Map | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit category feature. | |||||
CVE-2015-9308 | 1 Flippercode | 1 Wp Google Map | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit map feature. | |||||
CVE-2015-9307 | 1 Flippercode | 1 Wp Google Map | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit location feature. | |||||
CVE-2015-9305 | 1 Flippercode | 1 Wp Google Map | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
The wp-google-map-plugin plugin before 2.3.7 for WordPress has XSS related to the add_query_arg() and remove_query_arg() functions. |