WP Google Maps 6.0.26 – Cross Site Scripting (XSS) | CVE 2014-7182

Affects Plugins

wp-google-maps

Fixed in 6.0.27

References

CVE

CVE-2014-7182

URL

https://packetstormsecurity.com/files/#128694/

URL

https://www.immuniweb.com/advisory/HTB23236

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

Miscellaneous

Submitter

pvdl

Verified

No

WPVDB ID

62f6aef7-12e8-4542-ad2a-74dfb40d0686

Timeline

Publicly Published

2014-10-15 (about 11 years ago)

Added

2014-10-15 (about 11 years ago)

Last Updated

2019-10-21 (about 6 years ago)

Other

Published

Title

Published

2025-08-01

Title

WP Talroo <= 2.4 - Reflected XSS

Published

2025-08-16

Title

Elizaibots <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting

Published

2023-04-16

Title

WPML Multilingual CMS < 4.6.1 - Reflected Cross-Site Scripting

Published

2022-12-20

Title

WOOCS < 1.3.9.3 - Contributor+ Stored XSS

Published

2021-05-09

Title

Simple Giveaways < 2.36.2 - Unauthenticated Reflected Cross-Site Scripting (XSS)