Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 43 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-3361 WP Store Locator <= 2.2.261 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'wpsl_address' Post Meta tijmensmitWP Store Locator Medium 6.4 2026-04-23 03:26:37 Deep Dive
CVE-2025-13364 WP Maps – Store Locator,Google Maps,OpenStreetMap,Mapbox,Listing,Directory & Filters <= 4.8.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'put_wpgm' Shortcode flippercodeWP Maps – Store Locator,Google Maps,OpenStreetMap,Mapbox,Listing,Directory & Filters Medium 6.4 2026-04-16 06:44:52 Deep Dive
CVE-2026-2580 WP Maps – Store Locator,Google Maps,OpenStreetMap,Mapbox,Listing,Directory & Filters <= 4.9.1 - Unauthenticated SQL Injection via 'orderby' Parameter flippercodeWP Maps – Store Locator,Google Maps,OpenStreetMap,Mapbox,Listing,Directory & Filters High 7.5 2026-03-22 23:24:32 Deep Dive
CVE-2026-3222 WP Maps <= 4.9.1 - Unauthenticated SQL Injection via 'location_id' Parameter flippercodeWP Maps – Store Locator,Google Maps,OpenStreetMap,Mapbox,Listing,Directory & Filters High 7.5 2026-03-11 05:27:17 Deep Dive
CVE-2025-12062 WP Maps <= 4.8.6 - Authenticated (Subscriber+) Limited Local File Inclusion flippercodeWP Maps – Store Locator,Google Maps,OpenStreetMap,Mapbox,Listing,Directory & Filters High 8.8 2026-02-16 23:22:38 Deep Dive
CVE-2025-62140 WordPress Locatoraid Store Locator plugin <= 3.9.68 - Cross Site Scripting (XSS) vulnerability plainwareLocatoraid Store Locator Medium 5.9 2025-12-31 13:24:46 Deep Dive
CVE-2025-67516 WordPress Store Locator WordPress plugin <= 1.6.2 - SQL Injection vulnerability Agile LogixStore Locator WordPress High 8.5 2025-12-09 14:13:57 Deep Dive
CVE-2025-52737 WordPress WP Store Locator plugin <= 2.2.260 - PHP Object Injection vulnerability Tijmen SmitWP Store Locator--2025-10-22 14:32:23 Deep Dive
CVE-2025-10754 DocoDoco Store Locator <= 1.0.1 - Authenticated (Editor+) Arbitrary File Upload geolocationtechnologyDocoDoco Store Locator High 7.2 2025-10-15 08:25:49 Deep Dive
CVE-2025-49329 WordPress Store Locator WordPress plugin <= 1.5.2 - Arbitrary File Upload Vulnerability Agile LogixStore Locator WordPress Medium 6.6 2025-06-06 12:53:58 Deep Dive
CVE-2025-49328 WordPress Store Locator WordPress plugin <= 1.5.1 - SQL Injection Vulnerability Agile LogixStore Locator WordPress High 7.6 2025-06-06 12:53:57 Deep Dive
CVE-2024-12301 JSP Store Locator <= 1.0 - Deletion via Missing CSRF UnknownJSP Store Locator--2025-05-15 20:06:53 Deep Dive
CVE-2024-11267 JSP Store Locator <= 1.0 - Contributor+ SQL Injection UnknownJSP Store Locator--2025-05-15 20:06:49 Deep Dive
CVE-2025-3737 Google Maps: Store Locator - Critical - Unsupported - SA-CONTRIB-2025-038 DrupalGoogle Maps: Store Locator--2025-04-16 16:32:22 Deep Dive
CVE-2025-30919 WordPress Store Locator Widget plugin <= 2025r2 - CSRF to Stored XSS vulnerability Store Locator WidgetsStore Locator Widget High 7.1 2025-03-27 10:55:56 Deep Dive
CVE-2025-23519 WordPress G Web Pro Store Locator plugin <= 2.0.1 - Reflected Cross Site Scripting (XSS) vulnerability Jas SaranG Web Pro Store Locator High 7.1 2025-03-03 13:30:09 Deep Dive
CVE-2024-13657 Store Locator Widget <= 2025r1 - Authenticated (Contributor+) Stored Cross-Site Scripting store-locator-proStore Locator Widget Medium 6.4 2025-02-19 07:32:13 Deep Dive
CVE-2025-24676 WordPress Custom WP Store Locator plugin <= 1.4.7 - Cross Site Scripting (XSS) vulnerability umangmetataggCustom WP Store Locator High 7.1 2025-02-03 14:22:49 Deep Dive
CVE-2025-23422 WordPress Store Locator plugin <= 3.98.10 - Local File Inclusion vulnerability moalukoStore Locator High 7.5 2025-01-24 10:52:55 Deep Dive
CVE-2024-56283 WordPress Locatoraid Store Locator Plugin <= 3.9.50 - PHP Object Injection vulnerability plainwareLocatoraid Store Locator High 8.1 2025-01-07 10:49:20 Deep Dive