cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2015-10126,https://securityvulnerability.io/vulnerability/CVE-2015-10126,Easy2Map Photos Plugin sql injection,A vulnerability classified as critical was found in Easy2Map Photos Plugin 1.0.1 on WordPress. This vulnerability affects unknown code. The manipulation leads to sql injection. The attack can be initiated remotely. Upgrading to version 1.1.0 is able to address this issue. The patch is identified as 503d9ee2482d27c065f78d9546f076a406189908. It is recommended to upgrade the affected component. VDB-241318 is the identifier assigned to this vulnerability.,Wordpress,Easy2map Photos Plugin,6.3,MEDIUM,0.0014799999771639705,false,,false,false,false,,false,false,2023-10-06T08:00:04.475Z,0
CVE-2015-4617,https://securityvulnerability.io/vulnerability/CVE-2015-4617,,Vulnerability in Easy2map-photos WordPress Plugin v1.09 MapPinImageUpload.php and MapPinIconSave.php allows path traversal when specifying file names creating files outside of the upload directory.,Wordpress,Easy2map-photos WordPress Plugin,7.5,HIGH,0.001550000044517219,false,,false,false,false,,false,false,2019-02-15T21:00:00.000Z,0
CVE-2015-4615,https://securityvulnerability.io/vulnerability/CVE-2015-4615,,"Vulnerability in Easy2map-photos WordPress Plugin v1.09 allows SQL Injection via unsanitized mapTemplateName, mapName, mapSettingsXML, parentCSSXML, photoCSSXML, mapCSSXML, mapHTML,mapID variables",Wordpress,Easy2map-photos WordPress Plugin,9.8,CRITICAL,0.0048500001430511475,false,,false,false,false,,false,false,2019-02-15T21:00:00.000Z,0
CVE-2015-7669,https://securityvulnerability.io/vulnerability/CVE-2015-7669,,"Multiple directory traversal vulnerabilities in (1) includes/MapImportCSV2.php and (2) includes/MapImportCSV.php in the Easy2Map plugin before 1.3.0 for WordPress allow remote attackers to include and execute arbitrary files via the csvfile parameter related to ""upload file functionality.""",Wordpress,Easy2map,9.8,CRITICAL,0.005040000192821026,false,,false,false,false,,false,false,2017-12-27T19:00:00.000Z,0
CVE-2015-7668,https://securityvulnerability.io/vulnerability/CVE-2015-7668,,Cross-site scripting (XSS) vulnerability in includes/MapPinImageSave.php in the Easy2Map plugin before 1.3.0 for WordPress allows remote attackers to inject arbitrary web script or HTML via the map_id parameter.,Wordpress,Easy2map,6.1,MEDIUM,0.0010000000474974513,false,,false,false,false,,false,false,2017-12-27T19:00:00.000Z,0
CVE-2015-4614,https://securityvulnerability.io/vulnerability/CVE-2015-4614,,Multiple SQL injection vulnerabilities in includes/Function.php in the Easy2Map plugin before 1.2.5 for WordPress allow remote attackers to execute arbitrary SQL commands via the mapName parameter in an e2m_img_save_map_name action to wp-admin/admin-ajax.php and other unspecified vectors.,Wordpress,Easy2map,,,0.012860000133514404,false,,false,false,false,,false,false,2015-07-08T16:00:00.000Z,0
CVE-2015-4616,https://securityvulnerability.io/vulnerability/CVE-2015-4616,,Directory traversal vulnerability in includes/MapPinImageSave.php in the Easy2Map plugin before 1.2.5 for WordPress allows remote attackers to create arbitrary files via a .. (dot dot) in the map_id parameter.,Wordpress,Easy2map,,,0.015180000104010105,false,,false,false,false,,false,false,2015-07-08T16:00:00.000Z,0