Web Argument

web-argument

3 CVEs • 2 products

Products (2)

Click to collapse

Toggle

Google Map Shortcode

google_map_shortcode

Alphabetical List

alphabetical_list

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-8157 1Web Argument 1Alphabetical List Jun 17, 2026 Nov 21, 2024 N/A· v4 4.3 MEDIUM· v3 N/A· v2 The Alphabetical List WordPress plugin through 1.0.3 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
CVE-2023-38396 1Web Argument 1Google Map Shortcode Jun 17, 2026 Oct 3, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Cross-Site Request Forgery (CSRF) vulnerability in Alain Gonzalez plugin <= 3.1.2 versions.
CVE-2023-2899 1Web Argument 1Google Map Shortcode Jun 17, 2026 Jun 19, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 The Google Map Shortcode WordPress plugin through 3.1.2 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to...Show more The Google Map Shortcode WordPress plugin through 3.1.2 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as adminShow less