ThreatPress

WordPress Vulnerabilities Database

Back

WordPress WP Google Maps plugin <= 7.11.17 - Unauthenticated SQL Injection (SQLi) vulnerability

Product
WP Google Maps
Description
Unauthenticated SQL Injection (SQLi) vulnerability found by Thomas Chauchefoin in WordPress WP Google Maps plugin (versions <= 7.11.17).
Solution
Update the WordPress WP Google Maps plugin to the latest available version (at least 7.11.18).
Classification
Type SQL Injection
OWASP Top 10 A1: Injection
References
Plugin changelog
CVE
Name CVE-N/A
Versions
Affected In <= 7.11.17
Fixed In 7.11.18
Disclosure date
2019-04-02
Credits
Thomas Chauchefoin
Submitter
ThreatPress