Wp Google Map
Approved changes feed: RSS · Atom
cpe:2.3:a:flippercode:wp_google_map:*:*:*:*:*:wordpress:*:*
part: a version: * update: *
| Vendor | Flippercode (ffd64bd2-50ea-54d5-a7d3-fa9390ff6c1d) |
|---|---|
| Product | Wp Google Map (6b68a49f-4316-5e27-ac0a-458823902777) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | wordpress |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/crowdfavorite-mirrors/wp-wp-google-map-plugin |
purl2cpe | 2026-06-01 10:12:33.006442 |
pkg:github/wp-plugins/wp-google-map-plugin |
purl2cpe | 2026-06-01 10:12:33.006443 |
pkg:github/wpplugins/wp-google-map-plugin |
purl2cpe | 2026-06-01 10:12:33.006445 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-28172 |
vulnerable | 2026-06-08 06:01:09.777965 |
WordPress WP Google Map Plugin Plugin <= 4.4.2 is vulnerable to Cross Site Request Forgery (CSRF)
MEDIUM (5.4)
Cross-Site Request Forgery (CSRF) vulnerability in flippercode WordPress Plugin for Google Maps – WP MAPS (formerly WP Google Map Plugin) plugin <= 4.4.2 versions.
Published: 2023-11-12T22:24:13.073Z
Updated: 2026-04-28T16:08:15.723Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-23878 |
vulnerable | 2026-06-08 05:56:04.613596 |
WordPress WP Google Map Plugin Plugin <= 4.3.9 is vulnerable to Cross Site Scripting (XSS)
MEDIUM (5.9)
Auth. (editor+) Stored Cross-Site Scripting (XSS) vulnerability in flippercode WordPress Plugin for Google Maps – WP MAPS plugin <= 4.3.9 versions.
Published: 2023-04-04T11:38:53.967Z
Updated: 2026-04-28T16:08:03.735Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-25600 |
vulnerable | 2026-06-08 05:41:46.026421 |
WordPress WP Google Map plugin <= 4.2.3 - Cross-Site Request Forgery (CSRF) vulnerability
MEDIUM (5.4)
Cross-Site Request Forgery (CSRF) vulnerability affecting Delete Marker Category, Delete Map, and Copy Map functions in WP Google Map plugin (versions <= 4.2.3).
Published: 2022-03-11T17:54:09.346Z
Updated: 2026-04-28T16:07:38.889Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-24502 |
vulnerable | 2026-06-08 05:30:04.483687 |
WP Google Map < 1.7.7 - Authenticated Stored Cross-Site Scripting (XSS)
The WP Google Map WordPress plugin before 1.7.7 did not sanitise or escape the Map Title before outputting them in the page, leading to a Stored Cross-Site Scripting issue by high privilege users, even when the unfiltered_html capability is disallowed
Published: 2021-08-09T10:04:10.000Z
Updated: 2024-08-03T19:35:19.913Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-24130 |
vulnerable | 2026-06-08 05:30:03.828743 |
WP Google Map Plugin < 4.1.5 - Authenticated SQL Injection
Unvalidated input in the WP Google Map Plugin WordPress plugin, versions before 4.1.5, in the Manage Locations page within the plugin settings was vulnerable to SQL Injection through a high privileged user (admin+).
Published: 2021-03-18T14:57:48.000Z
Updated: 2024-08-03T19:21:18.661Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-0577 |
vulnerable | 2026-06-08 05:10:24.163728 |
Details available
Cross-site scripting vulnerability in WP Google Map Plugin prior to version 4.0.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Published: 2018-05-14T13:00:00.000Z
Updated: 2024-08-05T03:28:11.170Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2016-10878 |
vulnerable | 2026-06-08 05:07:25.775608 |
Details available
The wp-google-map-plugin plugin before 3.1.2 for WordPress has XSS.
Published: 2019-08-12T14:52:38.000Z
Updated: 2024-08-06T03:38:56.641Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2015-9309 |
vulnerable | 2026-06-08 05:07:13.550096 |
Details available
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit category feature.
Published: 2019-08-14T15:22:44.000Z
Updated: 2024-08-06T08:43:42.412Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2015-9308 |
vulnerable | 2026-06-08 05:07:13.549795 |
Details available
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit map feature.
Published: 2019-08-14T15:23:11.000Z
Updated: 2024-08-06T08:43:42.590Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2015-9307 |
vulnerable | 2026-06-08 05:07:13.549480 |
Details available
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit location feature.
Published: 2019-08-14T15:24:45.000Z
Updated: 2024-08-06T08:43:42.705Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2015-9305 |
vulnerable | 2026-06-08 05:07:13.546902 |
Details available
The wp-google-map-plugin plugin before 2.3.7 for WordPress has XSS related to the add_query_arg() and remove_query_arg() functions.
Published: 2019-08-12T14:51:50.000Z
Updated: 2024-08-06T08:43:42.548Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.