Does Google Maps and Distance Finder plugin have any unpatched vulnerabilities?

No. All known vulnerabilities in Google Maps and Distance Finder plugin have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Google Maps and Distance Finder plugin compatible with WordPress 3.4.2?

According to WordPress.org data, Google Maps and Distance Finder plugin 1.0 has been tested up to WordPress 3.4.2. Check the plugin's changelog for the latest compatibility information.

How often is Google Maps and Distance Finder plugin updated?

Google Maps and Distance Finder plugin was last updated on Nov 21, 2013. Frequent updates are generally a positive security signal.

What is Google Maps and Distance Finder plugin's security score?

Google Maps and Distance Finder plugin has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Google Maps and Distance Finder plugin Security & Risk Analysis

wordpress.org/plugins/google-maps-and-distance-finder

A brief description of the Plugin.

10 active installs v1.0 PHP + WP 3.0.1+ Updated Nov 21, 2013

contact-page-google-mapgoogle-mapspath-finderstore-locator

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Google Maps and Distance Finder plugin Safe to Use in 2026?

Generally Safe

Score 85/100

Google Maps and Distance Finder plugin has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 12yr ago

Risk Assessment

The "google-maps-and-distance-finder" plugin version 1.0 presents a mixed security posture. On the positive side, it has a very limited attack surface, with only one shortcode identified as an entry point. Crucially, there are no known CVEs associated with this plugin, and the code analysis shows a complete absence of dangerous functions and external HTTP requests. All SQL queries are properly prepared, indicating good database interaction practices.

However, significant concerns arise from the output escaping and taint analysis. A substantial portion of the code exhibits improperly escaped output, posing a risk of Cross-Site Scripting (XSS) vulnerabilities, especially given the one identified flow with an unsanitized path. The complete lack of nonce checks and capability checks, even for the single shortcode, is a major oversight. This means that any user, regardless of their role or authentication status, could potentially interact with the shortcode in unintended ways, leading to unexpected behavior or even more severe security issues if combined with other weaknesses.

While the vulnerability history is clean, this may be due to the plugin's limited scope or simply an absence of past discoveries. The current code analysis reveals critical areas for improvement. The primary risks stem from potential XSS due to unescaped output and the lack of authorization/integrity checks on the shortcode, which could be exploited.

Key Concerns

Unescaped output detected
Unsanitized path flow detected
Missing nonce checks on entry points
Missing capability checks on entry points

Vulnerabilities

None known

Google Maps and Distance Finder plugin Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Google Maps and Distance Finder plugin Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped4 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

1 flows1 with unsanitized paths

<settings> (settings.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Google Maps and Distance Finder plugin Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[my-loc-code] direction_shortcode.php:189

WordPress Hooks 3

actionwp_enqueue_scriptsgooglemap_distance.php:35

actionadmin_menugooglemap_distance.php:40

actionadmin_menugooglemap_distance.php:41

Maintenance & Trust

Google Maps and Distance Finder plugin Maintenance & Trust

Maintenance Signals

WordPress version tested3.4.2

Last updatedNov 21, 2013

PHP min version

Downloads3K

Community Trust

Rating100/100

Number of ratings2

Active installs10

Alternatives

Google Maps and Distance Finder plugin Alternatives

WP Maps – Store Locator,Google Maps,OpenStreetMap,Mapbox,Listing,Directory & Filters

wp-google-map-plugin

WordPress map plugin for Google Maps, OpenStreetMap & Mapbox with store locator, filterable listings & custom markers.

60K 21 CVEs

WP Store Locator

wp-store-locator

An easy to use location management system that enables users to search for nearby physical stores.

50K 1 CVE

MapPress Maps for WordPress

mappress-google-maps-for-wordpress

MapPress is the easiest way to add unlimited interactive Google and Leaflet maps to WordPress.

30K 14 CVEs

Store Locator WordPress

agile-store-locator

Agile Store Locator is a premium store finder plugin designed to offer you immediate access to all the best stores in your local area.

10K 8 CVEs

Maps Plugin using Google Maps for WordPress – WP Google Map

gmap-embed

Google Map plugin for WordPress is very Simple, light-weight and Easy to use Google Custom Map with markers in Posts, Pages, Sidebar as shortcode.

10K 6 CVEs

Developer Profile

Google Maps and Distance Finder plugin Developer Profile

AspireSolution

4 plugins · 240 total installs

trust score

Avg Security Score

93/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Google Maps and Distance Finder plugin

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/google-maps-and-distance-finder/jquery-ui.css/wp-content/plugins/google-maps-and-distance-finder/images/Home.png/wp-content/plugins/google-maps-and-distance-finder/images/User.png

Script Paths

https://maps.googleapis.com/maps/api/js?v=3.exp&sensor=true

Version Parameters

google-maps-and-distance-finder/jquery-ui.css?ver=

HTML / DOM Fingerprints

CSS Classes

map-canvaszip-distancemy-zipcodedialoguser-address

HTML Comments

Include the maps javascript with sensor=true because this code is using a
    sensor (a GPS locator) to determine the user's location.
    See: https://developers.google.com/maps/documentation/javascript/tutorial#Loading_the_Maps_API

Note: This example requires that you consent to location sharing when
    prompted by your browse

Data Attributes

id="map-canvas"id="zip-distance"id="my-zipcode"id="dialog"id="user-address"id="btnsubmit"+3 more

JS Globals

directionsDisplaydirectionsServicemapimg1img2initialize+2 more

Shortcode Output

<div id="zip" style="text-align:center;">
  <div id="zip-distance">
  </div>
  <a href="#" id="my-zipcode">Edit Location</a> </br>
 <div id="dialog" title="Address Form" style="width:300px; height:300px;  display:none">
Enter Your Address :<input type="text" id="user-address"/> 
<input type="submit" id="btnsubmit" value="Submit" style="height: 49px;width: 112px;text-align: center;margin: 12px 20px 0px 59px;"/>
 </div>  
 <input id="comp_loc" type="hidden" value= " "/>
 <input id="source_latlong" type="hidden" value= ""/>
 <input id="desti_latlong" type="hidden" value= ""/>
  </div>
   <div id="map-canvas" style="margin:0 auto;"></div>

FAQ