CVE-2023-6697
WP Go Maps (formerly WP Google Maps) for WordPress is affected by a Reflected XSS in map_id across all versions up to 9.0.28 due to insufficient input sanitization and output escaping. This can allow unauthenticated attackers to inject arbitrary scripts into pages executed by users who click mani...