Description
WordPress Plugin IBS Mappro is prone to a vulnerability that lets attackers download arbitrary files because the application fails to sufficiently verify user-supplied input. This may allow an attacker to gain access to sensitive information, which may aid in launching further attacks. WordPress Plugin IBS Mappro version 0.6 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.0 or latest
References
http://www.vapidlabs.com/advisory.php?v=137
http://www.openwall.com/lists/oss-security/2015/07/09/11
Related Vulnerabilities
Oracle Database Server Incorrect Authorization Vulnerability (CVE-2025-30751)
Apache HTTP Server Use of Uninitialized Resource Vulnerability (CVE-2020-1934)
WordPress Plugin Awesome Support-WordPress HelpDesk & Support Cross-Site Scripting (5.8.0)
Oracle Database Server Other Vulnerability (CVE-2006-0552)
Atlassian Jira Improper Authentication Vulnerability (CVE-2019-8443)