WordPress is the Wordpress Foundation’s set of blogging platform developed using the PHP language. WordPress plugin is a WordPress open source application plugin. WordPress MapPress Maps plugin has an authorization problem vulnerability that stems from a lack of authentication measures or insufficient authentication strength in the network system or product . An attacker with high privileges can use this vulnerability to bypass the DISALLOW_FILE_EDIT and DISALLOW_FILE_MODS settings and upload arbitrary files to the website via the ajax_save function.