Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

WP Go Maps (formerly WP Google Maps) — Vulnerabilities & Security Advisories 13

All 13 CVE vulnerabilities found in WP Go Maps (formerly WP Google Maps), with AI-generated Chinese analysis, references, and POCs.

Vendor: WP Go Maps

CVE IDTitleCVSSSeverityPaused
CVE-2026-4268 WP Go Maps (formerly WP Google Maps) <= 10.0.05 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting via admin_post_wpgmza_save_settings CWE-79 6.4 Medium2026-03-18
CVE-2026-0593 WP Go Maps (formerly WP Google Maps) <= 10.0.04 - Missing Authorization to Authenticated (Subscriber+) Map Engine Setting Modification CWE-862 5.3 Medium2026-01-24
CVE-2025-11307 WP Google Maps < 9.0.48 - Unauthenticated Stored XSS 6.1 -2025-11-11
CVE-2025-11703 WP Go Maps (formerly WP Google Maps) <= 9.0.48 - Unauthenticated Cache Poisoning CWE-349 5.3 Medium2025-10-18
CVE-2025-11166 WP Go Maps (formerly WP Google Maps) <= 9.0.46 - Cross-Site Request Forgery to Plugin Settings Update CWE-352 5.4 Medium2025-10-09
CVE-2024-5994 WP Go Maps (formerly WP Google Maps) <= 9.0.38 - Authenticated (Contributor+) Stored Cross-Site Scripting CWE-79 6.4 Medium2024-06-14
CVE-2024-3557 WP Go Maps (formerly WP Google Maps) <= 9.0.36 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode CWE-79 6.4 Medium2024-05-24
CVE-2023-6777 WP Go Maps (formerly WP Google Maps) <= 9.0.34 - Information Exposure to Potential Denial of Service CWE-200 5.3 Medium2024-04-09
CVE-2024-1582 WP Go Maps (formerly WP Google Maps) <= 9.0.32 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode CWE-79 6.4 Medium2024-03-13
CVE-2023-4839 WP Go Maps <= 9.0.32 - Authenticated (Administrator+) Stored Cross-Site Scripting CWE-79 4.4 Medium2024-03-13
CVE-2023-6697 WP Go Maps (formerly WP Google Maps) <= 9.0.28 - Reflected Cross-Site Scripting CWE-79 6.1 Medium2024-01-24
CVE-2023-6627 WP Go Maps < 9.0.28 - Unauthenticated Stored XSS 6.1AIMediumAI2024-01-08
CVE-2022-47595 WordPress WP Google Maps Plugin <= 9.0.15 is vulnerable to Path Traversal CWE-22 4.9 Medium2023-03-14

All 13 known CVE vulnerabilities affecting WP Go Maps (formerly WP Google Maps) with full Chinese analysis, references, and POCs where available.