Googlemaps
by Mapsplugin
CVEs (7)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2013-7429 | Cri | 0.64 | 9.8 | 0.02 | Sep 14, 2017 | The Googlemaps plugin before 3.1 for Joomla! allows remote attackers to conduct XML injection attacks via the url parameter to plugin_googlemap2_proxy.php. | |
| CVE-2013-7428 | Hig | 0.49 | 7.5 | 0.01 | Sep 7, 2017 | The Googlemaps plugin before 3.1 for Joomla! allows remote attackers to cause a denial of service via the url parameter to plugin_googlemap2_proxy.php. | |
| CVE-2013-7432 | Hig | 0.49 | 7.5 | 0.00 | Aug 29, 2017 | The Googlemaps plugin before 3.1 for Joomla! allows remote attackers to bypass an intended protection mechanism. | |
| CVE-2013-7433 | Med | 0.40 | 6.1 | 0.00 | Aug 29, 2017 | Cross-site scripting (XSS) vulnerability in the Googlemaps plugin before 3.1 for Joomla!. | |
| CVE-2013-7430 | Med | 0.40 | 6.1 | 0.00 | Aug 28, 2017 | Cross-site scripting (XSS) vulnerability in the Googlemaps plugin before 3.1 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the xmlns parameter. | |
| CVE-2014-9686 | Med | 0.38 | 5.9 | 0.01 | Sep 28, 2017 | The Googlemaps plugin 3.2 and earlier for Joomla! allows remote attackers with control of a sub-domain belonging to a victim domain to cause a denial of service via the 'url' parameter to plugin_googlemap3_kmlprxy.php. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-7428. | |
| CVE-2013-7431 | Med | 0.34 | 5.3 | 0.00 | Aug 29, 2017 | Full path disclosure in the Googlemaps plugin before 3.1 for Joomla!. |
- risk 0.64cvss 9.8epss 0.02
The Googlemaps plugin before 3.1 for Joomla! allows remote attackers to conduct XML injection attacks via the url parameter to plugin_googlemap2_proxy.php.
- risk 0.49cvss 7.5epss 0.01
The Googlemaps plugin before 3.1 for Joomla! allows remote attackers to cause a denial of service via the url parameter to plugin_googlemap2_proxy.php.
- risk 0.49cvss 7.5epss 0.00
The Googlemaps plugin before 3.1 for Joomla! allows remote attackers to bypass an intended protection mechanism.
- risk 0.40cvss 6.1epss 0.00
Cross-site scripting (XSS) vulnerability in the Googlemaps plugin before 3.1 for Joomla!.
- risk 0.40cvss 6.1epss 0.00
Cross-site scripting (XSS) vulnerability in the Googlemaps plugin before 3.1 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the xmlns parameter.
- risk 0.38cvss 5.9epss 0.01
The Googlemaps plugin 3.2 and earlier for Joomla! allows remote attackers with control of a sub-domain belonging to a victim domain to cause a denial of service via the 'url' parameter to plugin_googlemap3_kmlprxy.php. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-7428.
- risk 0.34cvss 5.3epss 0.00
Full path disclosure in the Googlemaps plugin before 3.1 for Joomla!.