Does Simple Google Contact Map have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Simple Google Contact Map compatible with WordPress 4.3.34?

According to WordPress.org data, Simple Google Contact Map 1.0 has been tested up to WordPress 4.3.34. Check the plugin's changelog for the latest compatibility information.

How often is Simple Google Contact Map updated?

Simple Google Contact Map was last updated on Sep 8, 2015. Frequent updates are generally a positive security signal.

What is Simple Google Contact Map's security score?

Simple Google Contact Map has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Simple Google Contact Map Security & Risk Analysis

wordpress.org/plugins/simple-google-contact-map

Simple embedded Google Map to any Post or Page Using shortcode and Widget.

30 active installs v1.0 PHP + WP 3.3+ Updated Sep 8, 2015

contactcontact-mapdirectiongoogle-mapmaps

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Simple Google Contact Map Safe to Use in 2026?

Generally Safe

Score 85/100

Simple Google Contact Map has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10yr ago

Risk Assessment

The "simple-google-contact-map" v1.0 plugin exhibits a mixed security posture. On the positive side, it has a very small attack surface with only one shortcode and no AJAX handlers or REST API routes, which are common vectors for exploits. Furthermore, all SQL queries are properly prepared, and there are no recorded vulnerabilities (CVEs), suggesting a history of responsible development or a lack of previous targeted attacks. However, significant concerns arise from the static analysis. The presence of dangerous functions like `unserialize` and `create_function` is a major red flag, as these can be exploited for remote code execution if user-supplied data is passed to them without proper sanitization. The low percentage of properly escaped output (29%) is also worrying, increasing the risk of cross-site scripting (XSS) vulnerabilities. The absence of nonce checks, while not directly exploitable given the limited attack surface, is a missed opportunity for defense-in-depth.

Key Concerns

Dangerous functions (unserialize, create_function)
Low percentage of output escaping
No nonce checks

Vulnerabilities

None known

Simple Google Contact Map Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Simple Google Contact Map Release Timeline

v1.0Current

Code Analysis

Analyzed Apr 16, 2026

Simple Google Contact Map Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

10 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$map_info = unserialize(get_option('sgcm_options'));googlemap-sgcm.php:44

create_functionadd_action( 'widgets_init', create_function('', 'return register_widget("Sgcm_Widget");'));googlemap-sgcm.php:178

unserialize$map_info = unserialize(get_option('sgcm_options'));options.php:112

Output Escaping

29% escaped35 total outputs

Attack Surface

Simple Google Contact Map Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[sgcm_map] googlemap-sgcm.php:75

WordPress Hooks 3

actionadmin_menugooglemap-sgcm.php:39

actionadmin_initgooglemap-sgcm.php:82

actionwidgets_initgooglemap-sgcm.php:178

Maintenance & Trust

Simple Google Contact Map Maintenance & Trust

Maintenance Signals

WordPress version tested4.3.34

Last updatedSep 8, 2015

PHP min version

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs30

Alternatives

Simple Google Contact Map Alternatives

WP Store Locator

wp-store-locator

An easy to use location management system that enables users to search for nearby physical stores.

50K 2 CVEs

Store Locator WordPress

agile-store-locator

Agile Store Locator is a premium store finder plugin designed to offer you immediate access to all the best stores in your local area.

10K 8 CVEs

Very Simple Google Maps

very-simple-google-maps

Contains a simple way to add an embedded Google Map to any page or post.

3K 2 CVEs

Contact Form 7 extension for Google Map fields

cf7-google-map

This plugin enables the insertion of google maps into contact form 7 as an input field.

600 1 CVE

Contact Page

contact-page

Easily create a contact page with relevant address information, Google Maps, your latest tweets and links to relevant social media profiles.

300 No CVEs

Developer Profile

Simple Google Contact Map Developer Profile

praveencrony

4 plugins · 3K total installs

trust score

Avg Security Score

90/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Simple Google Contact Map

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/simple-google-contact-map/css/sgcm-map.css

HTML / DOM Fingerprints

CSS Classes

Sgcm_Widget

Data Attributes

id="sgc-map-option"

Shortcode Output

<iframe width= height= frameborder="0" scrolling="no" marginheight="0" marginwidth="0" src="https://maps.google.com/maps??hl=&ie=utf8&output=embed&iwd=1&mrt=loc&t=

FAQ