158 matches found
WordPress MapSVG plugin <= 8.5.31 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Anhchangmutrang in WordPress Plugin MapSVG versions = 8.5.31...
WordPress MapSVG plugin < 8.6.13 - Broken Access Control Vulnerability
Broken Access Control Vulnerability discovered by Anhchangmutrang Patchstack Alliance in WordPress Plugin MapSVG versions 8.6.13...
WordPress MapSVG plugin <= 8.5.34 - Content Injection Vulnerability
Content Injection Vulnerability discovered by Anhchangmutrang in WordPress Plugin MapSVG versions = 8.5.34...
WordPress MapSVG Lite plugin <= 8.6.9 - Arbitrary Shortcode Execution vulnerability
Arbitrary Shortcode Execution vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin MapSVG versions = 8.6.9...
PT-2025-21709 · Romancode · Mapsvg
Name of the Vulnerable Software and Affected Versions: MapSVG versions prior to 8.5.32 Description: The issue is related to a Missing Authorization vulnerability in RomanCode MapSVG, which allows exploiting incorrectly configured access control security levels. Recommendations: For versions prior...
WordPress plugin MapSVG Lite 代码注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code injection...
PT-2025-21710 · Romancode · Mapsvg
Name of the Vulnerable Software and Affected Versions: MapSVG versions n/a through 8.5.34 Description: The issue is related to an Improper Control of Generation of Code, also known as 'Code Injection', in RomanCode MapSVG, allowing Code Injection. Recommendations: For versions n/a through 8.5.34,...
PT-2025-21725 · Unknown · Mapsvg Lite
Name of the Vulnerable Software and Affected Versions: MapSVG Lite versions n/a through 8.6.4 Description: The issue is related to an Improper Control of Generation of Code, also known as 'Code Injection', which affects MapSVG Lite. This allows for Code Injection. Recommendations: For versions n/...
WordPress plugin MapSVG 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
WordPress plugin MapSVG 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
WordPress plugin MapSVG 代码注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code injection...
CVE-2025-32682
Unrestricted Upload of File with Dangerous Type vulnerability in RomanCode MapSVG mapsvg-lite-interactive-vector-maps allows Upload a Web Shell to a Web Server.This issue affects MapSVG: from n/a through = 8.6.4...
Exploit for CVE-2025-32682
🐚 CVE-2025-32682 - Arbitrary File Upload in MapSVG Lite --...
CVE-2025-32682
Unrestricted Upload of File with Dangerous Type vulnerability in RomanCode MapSVG mapsvg-lite-interactive-vector-maps allows Upload a Web Shell to a Web Server.This issue affects MapSVG: from n/a through = 8.6.4...
CVE-2025-32682 WordPress MapSVG Lite plugin <= 8.6.4 - Arbitrary File Upload Vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in RomanCode MapSVG mapsvg-lite-interactive-vector-maps allows Upload a Web Shell to a Web Server.This issue affects MapSVG: from n/a through = 8.6.4...
CVE-2025-32682
The CVE-2025-32682 issue affects MapSVG Lite for WordPress (versions up to 8.5.34). The vulnerability stems from an unchecked SVG upload endpoint at /wp-json/mapsvg/v1/svgfile, where the code uploads files without validating type, extension, or contents, enabling an authenticated attacker (Subscr...
CVE-2025-32682 WordPress MapSVG Lite plugin <= 8.6.4 - Arbitrary File Upload Vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in RomanCode MapSVG mapsvg-lite-interactive-vector-maps allows Upload a Web Shell to a Web Server.This issue affects MapSVG: from n/a through = 8.6.4...
PT-2025-17168 · Unknown · Mapsvg Lite
Name of the Vulnerable Software and Affected Versions: MapSVG Lite versions prior to 8.5.35 Description: The issue allows for the unrestricted upload of files with dangerous types, enabling an attacker to upload a web shell to a web server. This can lead to further exploitation and potential...
WordPress plugin MapSVG Lite 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...
WordPress MapSVG Lite plugin <= 8.6.4 - Arbitrary File Upload Vulnerability
Arbitrary File Upload Vulnerability discovered by Anhchangmutrang in WordPress Plugin MapSVG versions = 8.6.4...