CVE-2012-2913
The CVE-2012-2913 entry concerns the Leaflet Maps Marker WordPress plugin (version 0.0.1) where unsanitized input in the id parameter (used by leaflet_layer.php and leaflet_marker.php via wp-admin/admin.php) enables cross-site scripting (XSS). Root cause: improper input handling in the id field l...