Does Map Engine – Google Maps and Open Street Maps for WordPress have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Map Engine – Google Maps and Open Street Maps for WordPress compatible with WordPress 6.2.9?

According to WordPress.org data, Map Engine – Google Maps and Open Street Maps for WordPress 0.0.2 has been tested up to WordPress 6.2.9. Check the plugin's changelog for the latest compatibility information.

Is Map Engine – Google Maps and Open Street Maps for WordPress compatible with PHP 5.6+?

Map Engine – Google Maps and Open Street Maps for WordPress requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

Map Engine – Google Maps and Open Street Maps for WordPress Security & Risk Analysis

wordpress.org/plugins/map-engine

An Ultimate map tool to revolutionize your map building experience.

100 active installs v0.0.2 PHP 5.6+ WP 5.0+ Updated Apr 6, 2023

gmapsgoogle-mapmap-markersopenstreetmapwp-google-maps

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Map Engine – Google Maps and Open Street Maps for WordPress Safe to Use in 2026?

Generally Safe

Score 85/100

Map Engine – Google Maps and Open Street Maps for WordPress has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago

Risk Assessment

The "map-engine" v0.0.2 plugin demonstrates a strong security posture based on the provided static analysis. The absence of dangerous functions, raw SQL queries, external HTTP requests, and a high percentage of properly escaped output are significant strengths. Furthermore, the presence of nonce and capability checks on its entry points, coupled with zero known CVEs, suggests a well-developed and secure plugin. The zero taint flows with unsanitized paths also indicate a lack of common injection vulnerabilities.

While the plugin exhibits good security practices, a few minor points could be considered for improvement. The presence of 10 AJAX handlers and 1 shortcode represents a potential attack surface. Although all AJAX handlers have checks, and there's no mention of the shortcode's security, it's an area where thorough review is always beneficial. The vulnerability history being completely clear is a very positive indicator of developer diligence or a lack of past issues. Overall, "map-engine" v0.0.2 appears to be a secure plugin, with only minor areas for potential enhancement.

Vulnerabilities

None known

Map Engine – Google Maps and Open Street Maps for WordPress Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Map Engine – Google Maps and Open Street Maps for WordPress Release Timeline

v0.0.2Current

v0.0.1

vdev

Code Analysis

Analyzed Mar 16, 2026

Map Engine – Google Maps and Open Street Maps for WordPress Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

26 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

96% escaped27 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

2 flows

save_settings (includes\core\admin\apps\settings.php:120)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Map Engine – Google Maps and Open Street Maps for WordPress Attack Surface

Entry Points11

Unprotected0

AJAX Handlers 10

authwp_ajax_wpvme_set_by_meta_keyincludes\core\admin\admin.php:32

authwp_ajax_wpvme_get_by_meta_keyincludes\core\admin\apps\builder.php:26

authwp_ajax_wpvme_update_post_dataincludes\core\admin\apps\builder.php:27

authwp_ajax_wpvme_save_builder_dataincludes\core\admin\apps\builder.php:28

authwp_ajax_wpvme_reset_upload_directoryincludes\core\admin\apps\builder.php:29

authwp_ajax_wpvme_create_mapincludes\core\admin\apps\edit.php:25

authwp_ajax_wpvme_save_settingsincludes\core\admin\apps\settings.php:25

authwp_ajax_wpvme_get_settingsincludes\core\admin\apps\settings.php:26

authwp_ajax_wpvme_frontend_map_dataincludes\core\frontend\shortcode.php:26

noprivwp_ajax_wpvme_frontend_map_dataincludes\core\frontend\shortcode.php:27

Shortcodes 1

[mapengine] includes\core\frontend\shortcode.php:23

WordPress Hooks 22

actionadmin_menuincludes\core\admin\admin.php:22

actionwp_loadedincludes\core\admin\admin.php:23

actionadmin_enqueue_scriptsincludes\core\admin\admin.php:24

actionin_admin_headerincludes\core\admin\admin.php:25

filterscreen_options_show_screenincludes\core\admin\admin.php:28

actionadmin_print_scriptsincludes\core\admin\admin.php:30

filtermanage_me_maps_posts_columnsincludes\core\admin\admin.php:36

actionmanage_me_maps_posts_custom_columnincludes\core\admin\admin.php:37

actioncurrent_screenincludes\core\admin\apps\builder.php:23

actionedit_form_topincludes\core\admin\apps\builder.php:40

actionadmin_enqueue_scriptsincludes\core\admin\apps\builder.php:41

actioncurrent_screenincludes\core\admin\apps\edit.php:22

actionadmin_enqueue_scriptsincludes\core\admin\apps\edit.php:36

actioncurrent_screenincludes\core\admin\apps\settings.php:22

actionadmin_enqueue_scriptsincludes\core\admin\apps\settings.php:36

actioninitincludes\core\cms.php:23

filterthe_contentincludes\core\cms.php:26

actionwp_enqueue_scriptsincludes\core\frontend\frontend.php:23

actiontemplate_redirectincludes\core\frontend\frontend.php:24

filterpost_row_actionsincludes\core\frontend\frontend.php:27

actionadmin_bar_menuincludes\core\frontend\shortcode.php:30

actionadmin_noticesmap-engine.php:25

Maintenance & Trust

Map Engine – Google Maps and Open Street Maps for WordPress Maintenance & Trust

Maintenance Signals

WordPress version tested6.2.9

Last updatedApr 6, 2023

PHP min version5.6

Downloads4K

Community Trust

Rating92/100

Number of ratings5

Active installs100

Alternatives

Map Engine – Google Maps and Open Street Maps for WordPress Alternatives

Easy Map – Store Locator, Google Maps, OpenStreetMap, Leaflet Map

easy-map

100

Create interactive maps with store locator, markers, drawings & multiple locations. Supports OpenStreetMap and Google Maps. No API key needed.

70 No CVEs

LB GMaps

lb-gmaps

Just another Google Maps plugin but simpler and with a live preview.

0 No CVEs

WP Go Maps (formerly WP Google Maps)

wp-google-maps

The easiest to use Google maps plugin! Create a custom Google map, map block, store locator or map widget with high quality markers containing categor …

300K 23 CVEs

WP Maps – Store Locator,Google Maps,OpenStreetMap,Mapbox,Listing,Directory & Filters

wp-google-map-plugin

WordPress map plugin for Google Maps, OpenStreetMap & Mapbox with store locator, filterable listings & custom markers.

60K 23 CVEs

Easy Google Maps

google-maps-easy

Google Maps with markers, locations and clusterization, KML layers and filters. Custom Google map markers with text, images, videos, links.

20K 7 CVEs

Developer Profile

Map Engine – Google Maps and Open Street Maps for WordPress Developer Profile

Anand Upadhyay

4 plugins · 200 total installs

trust score

Avg Security Score

93/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Map Engine – Google Maps and Open Street Maps for WordPress

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/map-engine/assets/css/admin/admin.css

Version Parameters

map-engine/assets/css/admin/admin.css?ver=

HTML / DOM Fingerprints

CSS Classes

me-admin-topbarme-brandingme-shortcode-wrapperme-shortcode-inputme-shortcode-copywme-copied-noticeme-map-engine-value

Data Attributes

id="wme-settings-screen"

Shortcode Output

[mapengine id='

FAQ