Does Multiple Location Google Map have any unpatched vulnerabilities?

Yes — Multiple Location Google Map currently has 1 unpatched vulnerability. We recommend switching to an alternative or applying any available workarounds.

Is Multiple Location Google Map compatible with WordPress 4.5.33?

According to WordPress.org data, Multiple Location Google Map 1.1 has been tested up to WordPress 4.5.33. Check the plugin's changelog for the latest compatibility information.

How often is Multiple Location Google Map updated?

Multiple Location Google Map was last updated on Jan 21, 2017. Frequent updates are generally a positive security signal.

What is Multiple Location Google Map's security score?

Multiple Location Google Map has a WP-Safety security score of 63/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Multiple Location Google Map Security & Risk Analysis

wordpress.org/plugins/multiple-location-google-map

Multiple Location Google Map is a user friendly plugin that doesn't require any coding skills or customization. MLGM allows you to create a custo …

100 active installs v1.1 PHP + WP 3.5+ Updated Jan 21, 2017

google-map-markersgoogle-mapsmapmarkermultiple-location-google-map

C · Use Caution

CVEs total1

Unpatched1

Last CVEApr 9, 2025

Plugin page Download

Safety Verdict

Is Multiple Location Google Map Safe to Use in 2026?

Use With Caution

Score 63/100

Multiple Location Google Map has 1 unpatched vulnerability. Evaluate alternatives or apply available mitigations.

1 known CVE 1 unpatched Last CVE: Apr 9, 2025Updated 9yr ago

Risk Assessment

The 'multiple-location-google-map' plugin version 1.1 exhibits a mixed security posture. On the positive side, the plugin demonstrates good practices in its handling of SQL queries, exclusively using prepared statements, and includes nonce and capability checks for its identified entry points. It also avoids bundling external libraries, which can be a source of vulnerabilities. However, several concerns arise from the static analysis. A significant portion of output is not properly escaped (72%), creating a risk of Cross-Site Scripting (XSS) vulnerabilities if untrusted data is directly outputted. Furthermore, all four taint analysis flows resulted in unsanitized paths, indicating potential issues where data might be processed in an insecure manner, although no critical or high severity issues were flagged here. The plugin's vulnerability history is a substantial concern, with one medium-severity CVE that remains unpatched. This suggests a pattern of past security weaknesses and a current active threat that needs immediate attention.

Key Concerns

Unpatched CVE (medium severity)
High percentage of unescaped output
All taint flows have unsanitized paths

Vulnerabilities

Multiple Location Google Map Security Vulnerabilities

CVEs by Year

1 CVE in 2025 · unpatched

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-32617medium · 6.1Cross-Site Request Forgery (CSRF)

Multiple Location Google Map <= 1.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting

Apr 9, 2025Unpatched

Code Analysis

Analyzed Mar 16, 2026

Multiple Location Google Map Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

25 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

28% escaped88 total outputs

Data Flows

4 unsanitized

Data Flow Analysis

4 flows4 with unsanitized paths

<manage_maps> (includes\admin\setting\manage_maps.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Multiple Location Google Map Attack Surface

Entry Points2

Unprotected0

Shortcodes 2

[MLGM] includes\shortcode.php:8

[MLGM] Latest\multiple-location-google-map\includes\shortcode.php:8

WordPress Hooks 16

actionadmin_menuincludes\admin\admin.php:10

actionadmin_enqueue_scriptsincludes\admin\admin.php:11

actioninitincludes\admin\installation.php:29

actionadd_meta_boxesincludes\admin\installation.php:31

actionsave_postincludes\admin\installation.php:52

actionwp_headincludes\shortcode.php:9

filterthe_contentincludes\shortcode.php:10

actionadmin_menuLatest\multiple-location-google-map\includes\admin\admin.php:10

actionadmin_enqueue_scriptsLatest\multiple-location-google-map\includes\admin\admin.php:11

actioninitLatest\multiple-location-google-map\includes\admin\installation.php:41

actionadd_meta_boxesLatest\multiple-location-google-map\includes\admin\installation.php:43

actionsave_postLatest\multiple-location-google-map\includes\admin\installation.php:64

actionwp_headLatest\multiple-location-google-map\includes\shortcode.php:9

filterthe_contentLatest\multiple-location-google-map\includes\shortcode.php:10

actionplugins_loadedLatest\multiple-location-google-map\multiple-location-google-map.php:23

actionplugins_loadedmultiple-location-google-map.php:23

Maintenance & Trust

Multiple Location Google Map Maintenance & Trust

Maintenance Signals

WordPress version tested4.5.33

Last updatedJan 21, 2017

PHP min version

Downloads13K

Community Trust

Rating100/100

Number of ratings4

Active installs100

Alternatives

Multiple Location Google Map Alternatives

WP Go Maps (formerly WP Google Maps)

wp-google-maps

The easiest to use Google maps plugin! Create a custom Google map, map block, store locator or map widget with high quality markers containing categor …

300K 22 CVEs

Easy Google Maps

google-maps-easy

Google Maps with markers, locations and clusterization, KML layers and filters. Custom Google map markers with text, images, videos, links.

20K 7 CVEs

Maps Plugin using Google Maps for WordPress – WP Google Map

gmap-embed

Google Map plugin for WordPress is very Simple, light-weight and Easy to use Google Custom Map with markers in Posts, Pages, Sidebar as shortcode.

10K 6 CVEs

CodePeople Post Map for Google Maps

codepeople-post-map

100

CodePeople Post Map lets you geotag posts and seamlessly integrate your blog with Google Maps for a smooth, location-aware experience.

4K 1 CVE

Basic Google Maps Placemarks

basic-google-maps-placemarks

Embeds a Google Map into your site and lets you add map markers with custom icons and information windows.

3K No CVEs

Developer Profile

Multiple Location Google Map Developer Profile

Ydesignservices

1 plugin · 100 total installs

trust score

Avg Security Score

63/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Multiple Location Google Map

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/multiple-location-google-map/asset/css/yds-map-css.css/wp-content/plugins/multiple-location-google-map/asset/css/jquery-ui.css/wp-content/plugins/multiple-location-google-map/asset/js/yds-color-picker.js/wp-content/plugins/multiple-location-google-map/asset/js/range-slider.js/wp-content/plugins/multiple-location-google-map/asset/js/jquery.axgmap.js

HTML / DOM Fingerprints

CSS Classes

axgmap

Data Attributes

data-latlngdata-zoomdata-draggabledata-scrollwheeldata-map-type-controldata-overview-map-control+5 more

Shortcode Output

[MLGM]

FAQ