Admin+ File Upload leading to Remote Code Execution vulnerability discovered by qerogram in WordPress MapPress Maps for WordPress plugin (versions <= 2.73.12).
Update the WordPress MapPress Maps for WordPress plugin to the latest available version (at least 2.73.13).