Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-55662
HistoryJun 22, 2022 - 12:00 a.m.

WordPress plugin Inline Google Maps cross-site request forgery vulnerability

2022-06-2200:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
wordpress
google maps
csrf
php
mysql
cross-site scripting

EPSS

0.001

Percentile

26.3%

JSON

WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blogging sites on servers with PHP and MySQL. WordPress plugin Inline Google Maps 5.11 and earlier versions are vulnerable to cross-site request forgery, which stems from not performing CSRF checks when updating its settings. An attacker could exploit the vulnerability through a CSRF attack to allow logged-in administrators to change them and sanitize and escape due to a lack of stored cross-site scripting.

Related

cve 1
wpexploit 1
prion 1
wpvulndb 1
nvd 1
cvelist 1
cve
cve
CVE-2022-1829
2022-06-20 11:15:10
wpexploit
wpexploit
Inline Google Maps <= 5.11 - Arbitrary Settings Update to Stored XSS via CSRF
2022-05-30 00:00:00
prion
prion
Cross site scripting
2022-06-20 11:15:00
wpvulndb
wpvulndb
Inline Google Maps <= 5.11 - Arbitrary Settings Update to Stored XSS via CSRF
2022-05-30 00:00:00
nvd
nvd
CVE-2022-1829
2022-06-20 11:15:10
cvelist
cvelist
CVE-2022-1829 Inline Google Maps <= 5.11 - Arbitrary Settings Update to Stored XSS via CSRF
2022-06-20 10:26:07

EPSS

0.001

Percentile

26.3%

JSON
Related for CNVD-2022-55662
cve1wpexploit1prion1wpvulndb1nvd1cvelist1