Wp Guestmap Project - Wp Guestmap Project CVE

Filtered by vendor Wp Guestmap Project Subscribe

Filtered by product Wp Guestmap Project

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2014-4587	1 Wp Guestmap Project	1 Wp Guestmap Project	2024-02-04	4.3 MEDIUM	N/A
Multiple cross-site scripting (XSS) vulnerabilities in the WP GuestMap plugin 1.8 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) zl, (2) mt, or (3) dc parameter to guest-locator.php; the (4) zl, (5) mt, (6) activate, or (7) dc parameter to online-tracker.php; the (8) zl, (9) mt, or (10) dc parameter to stats-map.php; or the (11) zl, (12) mt, (13) activate, or (14) dc parameter to weather-map.php.

Vulnerabilities (CVE)