Image Map Pro Security Vulnerabilities and Issues — Image Map Pro CVE List

Lucene search

WebcraftpluginsImage Map Pro

4 matches found

CVE•added 2023/06/27 4:15 a.m.•39 views

CVE-2023-3412

The Image Map Pro – Drag-and-drop Builder for Interactive Images – Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.0.0. This is due to a missing capability check on the ajax_store_save() function. This makes it possible for authenticated at...

6.4CVSS5.1AI score0.00085EPSS

CVE•added 2024/10/25 6:15 p.m.•35 views

CVE-2024-9584

The Image Map Pro plugin for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing capability check on the AJAX functions in versions up to, and including, 6.0.20. This makes it possible for authenticated attackers with contributor-level privileges or above,...

5.4CVSS5.5AI score0.00087EPSS

CVE•added 2024/10/25 6:15 p.m.•35 views

CVE-2024-9585

The Image Map Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'save_project' function with an arbitrary shortcode in versions up to, and including, 6.0.20 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS5.5AI score0.00038EPSS

CVE•added 2023/06/27 4:15 a.m.•29 views

CVE-2023-3411

The Image Map Pro – Drag-and-drop Builder for Interactive Images – Lite plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.0.0. This is due to missing nonce validation on the ajax_store_save() function. This makes it possible for unauthenticated att...

6.1CVSS4.5AI score0.00083EPSS