9.1 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
68.1%
The mappress-google-maps-for-wordpress plugin before 2.53.9 for WordPress does not correctly implement AJAX functions with nonces (or capability checks), leading to remote code execution.
wordpress.org/plugins/mappress-google-maps-for-wordpress/#developers
www.wordfence.com/blog/2020/04/critical-vulnerabilities-patched-in-mappress-maps-plugin/