2 matches found
CVE-2023-3411
The Image Map Pro – Drag-and-drop Builder for Interactive Images – Lite plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.0.0. This is due to missing nonce validation on the ajaxstoresave function. This makes it possible for unauthenticated...
WordPress Image Map Pro Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)
Software Image Map Pro Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-3411 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 58704efd163a Credits Kenichiro Ito Required...