Mappress Maps For Wordpress Security Vulnerabilities and Issues — Mappress Maps For Wordpress CVE List

Lucene search

MappressproMappress Maps For Wordpress

2 matches found

CVE•added 2022/02/14 12:15 p.m.•79 views

CVE-2022-0208

The MapPress Maps for WordPress plugin before 2.73.4 does not sanitise and escape the mapid parameter before outputting it back in the "Bad mapid" error message, leading to a Reflected Cross-Site Scripting

6.1CVSS6.1AI score0.04312EPSS

CVE•added 2022/04/04 4:15 p.m.•73 views

CVE-2022-0537

The MapPress Maps for WordPress plugin before 2.73.13 allows a high privileged user to bypass the DISALLOW_FILE_EDIT and DISALLOW_FILE_MODS settings and upload arbitrary files to the site through the "ajax_save" function. The file is written relative to the current 's stylesheet directory, and a .p...

7.2CVSS6.9AI score0.0083EPSS