CVE-2014-7182 in Wordpress Google Maps Pluginالمعلومات

الملخص

بحسب MITRE

Multiple cross-site scripting (XSS) vulnerabilities in the WP Google Maps plugin before 6.0.27 for WordPress allow remote attackers to inject arbitrary web script or HTML via the poly_id parameter in an (1) edit_poly, (2) edit_polyline, or (3) edit_marker action in the wp-google-maps-menu page to wp-admin/admin.php.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

حجز

25/09/2014

إفشاء

22/10/2014

الاعتدال

تمت الموافقة

إدخال

VDB-72677

EPSS

0.02461

KEV

لا

النشاطات

منخفض جدًا

المصادر

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!