CVE-2021-24383
N/A
N/A
Summary
The WP Google Maps WordPress plugin before 8.1.12 did not sanitise, validate of escape the Map Name when output in the Map List of the admin dashboard, leading to an authenticated Stored Cross-Site Scripting issue
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| WP Google Maps | WP Google Maps | 8.1.12 < 8.1.12 | affected |
Weaknesses
- CWE-79: CWE-79 Cross-site Scripting (XSS)
ADP Enrichment
CVE Program Container
Additional References
- https://wpscan.com/vulnerability/1270588c-53fe-447e-b83c-1b877dc7a954
- http://packetstormsecurity.com/files/163261/WordPress-WP-Google-Maps-8.1.11-Cross-Site-Scripting.html
References
- https://wpscan.com/vulnerability/1270588c-53fe-447e-b83c-1b877dc7a954
- http://packetstormsecurity.com/files/163261/WordPress-WP-Google-Maps-8.1.11-Cross-Site-Scripting.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.