flippercode CVE Vulnerabilities & Metrics

Focus on flippercode vulnerabilities and metrics.

Last updated: 08 Mar 2025, 23:25 UTC

About flippercode Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with flippercode. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total flippercode CVEs: 11
Earliest CVE date: 14 May 2018, 13:29 UTC
Latest CVE date: 12 Nov 2023, 23:15 UTC

Latest CVE reference: CVE-2023-28172

Rolling Stats

30-day Count (Rolling): 0
365-day Count (Rolling): 0

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): 0%
Year Variation (Calendar): -100.0%

Month Growth Rate (30-day Rolling): 0.0%
Year Growth Rate (365-day Rolling): -100.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical flippercode CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 4.48

Max CVSS: 6.8

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range	Count
0.0-3.9	4
4.0-6.9	7
7.0-8.9	0
9.0-10.0	0

CVSS Distribution Chart

Top 5 Highest CVSS flippercode CVEs

These are the five CVEs with the highest CVSS scores for flippercode, sorted by severity first and recency.

CVE-2022-25600 flippercode Published on 11 Mar 2022, 18:15 UTC (CVSS: 6.8)
Cross-Site Request Forgery (CSRF) vulnerability affecting Delete Marker Category, Delete Map, and Copy Map functions in WP Google Map plugin (versions <= 4.2.3).
CVE-2015-9309 flippercode Published on 14 Aug 2019, 16:15 UTC (CVSS: 6.8)
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit category feature.
CVE-2015-9308 flippercode Published on 14 Aug 2019, 16:15 UTC (CVSS: 6.8)
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit map feature.
CVE-2015-9307 flippercode Published on 14 Aug 2019, 16:15 UTC (CVSS: 6.8)
The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit location feature.
CVE-2021-24130 flippercode Published on 18 Mar 2021, 15:15 UTC (CVSS: 6.5)
Unvalidated input in the WP Google Map Plugin WordPress plugin, versions before 4.1.5, in the Manage Locations page within the plugin settings was vulnerable to SQL Injection through a high privileged user (admin+).

All CVEs for flippercode

CVE-2023-28172 flippercode vulnerability CVSS: 0 12 Nov 2023, 23:15 UTC

Cross-Site Request Forgery (CSRF) vulnerability in flippercode WordPress Plugin for Google Maps – WP MAPS (formerly WP Google Map Plugin) plugin <= 4.4.2 versions.

CVE-2023-23878 flippercode vulnerability CVSS: 0 04 Apr 2023, 12:15 UTC

Auth. (editor+) Stored Cross-Site Scripting (XSS) vulnerability in flippercode WordPress Plugin for Google Maps – WP MAPS plugin <= 4.3.9 versions.

CVE-2022-25600 flippercode vulnerability CVSS: 6.8 11 Mar 2022, 18:15 UTC

Cross-Site Request Forgery (CSRF) vulnerability affecting Delete Marker Category, Delete Map, and Copy Map functions in WP Google Map plugin (versions <= 4.2.3).

CVE-2021-24502 flippercode vulnerability CVSS: 3.5 09 Aug 2021, 10:15 UTC

The WP Google Map WordPress plugin before 1.7.7 did not sanitise or escape the Map Title before outputting them in the page, leading to a Stored Cross-Site Scripting issue by high privilege users, even when the unfiltered_html capability is disallowed

CVE-2021-24130 flippercode vulnerability CVSS: 6.5 18 Mar 2021, 15:15 UTC

Unvalidated input in the WP Google Map Plugin WordPress plugin, versions before 4.1.5, in the Manage Locations page within the plugin settings was vulnerable to SQL Injection through a high privileged user (admin+).

CVE-2015-9309 flippercode vulnerability CVSS: 6.8 14 Aug 2019, 16:15 UTC

The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit category feature.

CVE-2015-9308 flippercode vulnerability CVSS: 6.8 14 Aug 2019, 16:15 UTC

The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit map feature.

CVE-2015-9307 flippercode vulnerability CVSS: 6.8 14 Aug 2019, 16:15 UTC

The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit location feature.

CVE-2016-10878 flippercode vulnerability CVSS: 4.3 12 Aug 2019, 15:15 UTC

The wp-google-map-plugin plugin before 3.1.2 for WordPress has XSS.

CVE-2015-9305 flippercode vulnerability CVSS: 4.3 12 Aug 2019, 15:15 UTC

The wp-google-map-plugin plugin before 2.3.7 for WordPress has XSS related to the add_query_arg() and remove_query_arg() functions.

CVE-2018-0577 flippercode vulnerability CVSS: 3.5 14 May 2018, 13:29 UTC

Cross-site scripting vulnerability in WP Google Map Plugin prior to version 4.0.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.