Page 3 of 14 results (0.009 seconds)

CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0

The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit category feature. El plugin wp-google-map-plugin versiones anteriores a 2.3.10 para WordPress, presenta una vulnerabilidad de tipo CSRF en la funcionalidad de categoría add/edit. The WP Google Map plugin before 2.3.10 for WordPress has CSRF in the add/edit category feature. • https://wordpress.org/plugins/wp-google-map-plugin/#developers https://wpvulndb.com/vulnerabilities/9766 • CWE-352: Cross-Site Request Forgery (CSRF) •

CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0

The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit location feature. El plugin wp-google-map-plugin versiones anteriores a 2.3.10 para WordPress, presenta una vulnerabilidad de tipo CSRF en la funcionalidad de ubicación add/edit The WP Google Map plugin before 2.3.10 for WordPress has CSRF in the add/edit location feature. • https://wordpress.org/plugins/wp-google-map-plugin/#developers https://wpvulndb.com/vulnerabilities/9766 • CWE-352: Cross-Site Request Forgery (CSRF) •

CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0

The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit map feature. El plugin wp-google-map-plugin versiones anteriores a 2.3.10 para WordPress, presenta una vulnerabilidad de tipo CSRF en la funcionalidad de mapa add/edit. The WP Google Map plugin before 2.3.10 for WordPress has CSRF in the add/edit map feature. • https://wordpress.org/plugins/wp-google-map-plugin/#developers https://wpvulndb.com/vulnerabilities/9766 • CWE-352: Cross-Site Request Forgery (CSRF) •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

The wp-google-map-plugin plugin before 2.3.7 for WordPress has XSS related to the add_query_arg() and remove_query_arg() functions. El plugin wp-google-map-plugin anterior a la versión 2.3.7 para WordPress tiene XSS relacionado con las funciones add_query_arg () y remove_query_arg (). • https://wordpress.org/plugins/wp-google-map-plugin/#developers • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •