2 matches found
CVE-2025-28858 WordPress Arrow Maps plugin <= 1.0.9 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Arrow Plugins Arrow Maps ap-google-maps allows Reflected XSS.This issue affects Arrow Maps: from n/a through = 1.0.9...
CVE-2025-28858
Arrow Maps (WordPress plugin Arrow Maps) is affected by CVE-2025-28858: Reflected XSS due to improper neutralization of input during web page generation. Affected versions are described as 'n/a through <= 1.0.9'. The CVSS 3.1 base score is 7.1 (High) with network attack vector, low to low for ...