📦

map_builder_for_google_maps

Vendor: 10web

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 6 Total Indexed

Avg. EPSS 15.57% Exploit Prob.

Latest CVE CVE-2023-45272 Jan 02

Security Vulnerability Index

Page 1 / 1

5.4 CVSS

CVE-2023-45272

Missing Authorization vulnerability in 10Web 10Web Map Builder for Google Maps allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects 10Web Map Builder for Google Maps: from n/a through 1.0.73.

EPSS: 0.17%

Severity: MEDIUM

Jan 02, 2025

7.6 CVSS

CVE-2024-31116

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in 10Web 10Web Map Builder for Google Maps.This issue affects 10Web Map Builder for Google Maps: from n/a through 1.0.74.

EPSS: 0.21%

Severity: HIGH

Mar 31, 2024

9.8 CVSS

CVE-2023-0037

The 10Web Map Builder for Google Maps WordPress plugin before 1.0.73 does not properly sanitise and escape some parameters before using them in an SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection

EPSS: 61.73%

Severity: CRITICAL

Mar 13, 2023

5.4 CVSS

CVE-2022-4758

The 10WebMapBuilder WordPress plugin before 1.0.72 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins.

EPSS: 0.18%

Severity: MEDIUM

Jan 23, 2023

Displaying 4 of 6 Total Entries

Total 1 Sections