Multiple Authenticated Persistent Cross-Site Scripting (XSS) vulnerabilities discovered by Vlad Visse (Patchstack Red Team) in WordPress WP Google Maps Pro premium plugin (versions <= 8.1.11). Vulnerable parameters: &wpgmaps_marker_category_name, Value > &attributes[], Name > &attributes[], &icons[], &names[], &description, &link, &title.
Update the WordPress WP Google Maps Pro premium plugin to the latest available version (at least 8.1.12).
CPE | Name | Operator | Version |
---|---|---|---|
wp google maps pro | le | 8.1.11 |