IDCVSSSummaryLast (major) updatePublished
CVE-2015-4615 7.5
Vulnerability in Easy2map-photos WordPress Plugin v1.09 allows SQL Injection via unsanitized mapTemplateName, mapName, mapSettingsXML, parentCSSXML, photoCSSXML, mapCSSXML, mapHTML,mapID variables
19-02-2019 - 15:29 15-02-2019 - 21:29
CVE-2015-4617 5.0
Vulnerability in Easy2map-photos WordPress Plugin v1.09 MapPinImageUpload.php and MapPinIconSave.php allows path traversal when specifying file names creating files outside of the upload directory.
19-02-2019 - 20:56 15-02-2019 - 21:29
CVE-2015-7668 4.3
Cross-site scripting (XSS) vulnerability in includes/MapPinImageSave.php in the Easy2Map plugin before 1.3.0 for WordPress allows remote attackers to inject arbitrary web script or HTML via the map_id parameter.
02-05-2019 - 12:13 27-12-2017 - 19:29
CVE-2015-7669 7.5
Multiple directory traversal vulnerabilities in (1) includes/MapImportCSV2.php and (2) includes/MapImportCSV.php in the Easy2Map plugin before 1.3.0 for WordPress allow remote attackers to include and execute arbitrary files via the csvfile parameter
07-05-2019 - 14:10 27-12-2017 - 19:29
Back to Top Mark selected
Back to Top