Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-29453: WordPress API KEY for Google Maps plugin <= 1.2.1 - CSRF vulnerability leading to Google Maps API key update - Patchstack

Cross-Site Request Forgery (CSRF) vulnerability in API KEY for Google Maps plugin <= 1.2.1 at WordPress leading to Google Maps API key update.

CVE
Open in Source
#csrf#vulnerability#google#wordpress

Verified

Fixed

5.4

CVSS 3.1 score Medium severity

Monitoring Coming soon

PSID

2d3ab1d81ae9

Classification

Cross Site Request Forgery (CSRF)

OWASP Top 10

A5: Broken Access Control

Publicly disclosed

2022-06-08

Details

CSRF vulnerability leading to Google Maps API key update discovered by Rasi Afeef (Patchstack Alliance) in WordPress API KEY for Google Maps plugin (versions <= 1.2.1).

Solution

Update the WordPress API KEY for Google Maps plugin to the latest available version (at least 1.2.2).

References

Changeset

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE