VYPR

Wp Google Map

by WordPress

Source repositories

CVEs (4)

  • CVE-2025-11365MedOct 15, 2025
    risk 0.42cvss 6.5epss 0.00

    The WP Google Map Plugin plugin for WordPress is vulnerable to blind SQL Injection via the 'id' parameter of the 'google_map' shortcode in all versions up to, and including, 1.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the…

  • CVE-2021-45729MedJan 25, 2022
    risk 0.35cvss 5.4epss 0.01

    The Privilege Escalation vulnerability discovered in the WP Google Map WordPress plugin (versions <= 1.8.0) allows authenticated low-role users to create, edit, and delete maps.

  • CVE-2021-24502MedAug 9, 2021
    risk 0.31cvss 4.8epss 0.01

    The WP Google Map WordPress plugin before 1.7.7 did not sanitise or escape the Map Title before outputting them in the page, leading to a Stored Cross-Site Scripting issue by high privilege users, even when the unfiltered_html capability is disallowed

  • CVE-2025-39465MedNov 6, 2025
    risk 0.28cvss 4.3epss 0.00

    Missing Authorization vulnerability in flippercode Advanced Google Maps wp-google-map-gold allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Advanced Google Maps: from n/a through <= 5.8.4.