CVE-2012-10018 Mapplic Lite and Mapplic <= (Various Versions) - Server Side Request Forgery to Cross-Site Scirpting

🗓️ 16 Oct 2024 06:43:33Reported by WordfenceType

Mapplic Lite and Mapplic WordPress plugins have Server-Side Request Forgery vulnerability

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2012-10018	9 Jan 202621:02	–	circl
CNNVD	WordPress plugin Mapplic and Mapplic Lite 代码问题漏洞	16 Oct 202400:00	–	cnnvd
CVE	CVE-2012-10018	16 Oct 202406:43	–	cve
EUVD	EUVD-2012-6564	7 Oct 202500:30	–	euvd
Nuclei	WordPress Mapplic <= 6.1 / Mapplic Lite <= 1.0 - Authenticated Stored XSS via SVG File Upload	23 Jun 202605:08	–	nuclei
NVD	CVE-2012-10018	16 Oct 202407:15	–	nvd
Positive Technologies	PT-2024-10550	16 Oct 202400:00	–	ptsecurity
RedhatCVE	CVE-2012-10018	22 May 202509:23	–	redhatcve
VulnCheck KEV	VulnCheck KEV: CVE-2012-10018	15 Oct 202400:00	–	vulncheck_kev
Vulnrichment	CVE-2012-10018 Mapplic Lite and Mapplic <= (Various Versions) - Server Side Request Forgery to Cross-Site Scirpting	16 Oct 202406:43	–	vulnrichment

[
  {
    "vendor": "sekler",
    "product": "Mapplic Lite",
    "versions": [
      {
        "version": "0",
        "status": "affected",
        "lessThan": "1.0.1",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "sekler",
    "product": "Mapplic - Custom Interactive Map WordPress Plugin",
    "versions": [
      {
        "version": "0",
        "status": "affected",
        "lessThan": "6.2",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/5aacabb5-94af-485a-af24-e84db3e3726f
packetstormsecurity	www.packetstormsecurity.com/files/161920/
mapplic	www.mapplic.com/docs/
plugins	www.plugins.trac.wordpress.org/changeset/2503447
packetstormsecurity	www.packetstormsecurity.com/files/161919/

08 Apr 2026 16:55Current

CVSS 3.18.3

EPSS0.01133

CWE-918