cvedb.io
CVE-2019-10692
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2019-04-02T18:30:20.927 · Last modified 2026-06-17T02:11:31.313

Summary

In the wp-google-maps plugin before 7.11.18 for WordPress, includes/class.rest-api.php in the REST API does not sanitize field names before a SELECT statement.

Affected products

codecabin — wp_go_maps

Does this affect you?

Add your gear to cvedb and we'll alert you only when codecabin ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.