CVE-2015-9307 – WP Google Map Plugin < 2.3.10 - Cross-Site Request Forgery
https://notcve.org/view.php?id=CVE-2015-9307
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit location feature. El plugin wp-google-map-plugin versiones anteriores a 2.3.10 para WordPress, presenta una vulnerabilidad de tipo CSRF en la funcionalidad de ubicación add/edit The WP Google Map plugin before 2.3.10 for WordPress has CSRF in the add/edit location feature. • https://wordpress.org/plugins/wp-google-map-plugin/#developers https://wpvulndb.com/vulnerabilities/9766 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVE-2015-9308 – WP Google Map Plugin < 2.3.10 - Cross-Site Request Forgery
https://notcve.org/view.php?id=CVE-2015-9308
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit map feature. El plugin wp-google-map-plugin versiones anteriores a 2.3.10 para WordPress, presenta una vulnerabilidad de tipo CSRF en la funcionalidad de mapa add/edit. The WP Google Map plugin before 2.3.10 for WordPress has CSRF in the add/edit map feature. • https://wordpress.org/plugins/wp-google-map-plugin/#developers https://wpvulndb.com/vulnerabilities/9766 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVE-2015-9305 – WP Google Map Plugin < 2.3.7 - Reflected Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2015-9305
The wp-google-map-plugin plugin before 2.3.7 for WordPress has XSS related to the add_query_arg() and remove_query_arg() functions. El plugin wp-google-map-plugin anterior a la versión 2.3.7 para WordPress tiene XSS relacionado con las funciones add_query_arg () y remove_query_arg (). • https://wordpress.org/plugins/wp-google-map-plugin/#developers • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •