2 matches found
CVE-2024-3681
The Interactive World Maps plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the search s parameter in all versions up to, and including, 2.4.14 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...
CVE-2024-3681
The CVE CVE-2024-3681 affects the Interactive World Maps WordPress plugin. A Reflected Cross-Site Scripting (XSS) vulnerability exists via the search parameter in all versions up to 2.4.14, caused by insufficient input sanitization and output escaping. Exploitation requires a user to click a craf...