Description
WordPress Plugin Maps Widget for Google Maps-Google Maps Builder is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently enable the tracking functionality. WordPress Plugin Maps Widget for Google Maps-Google Maps Builder version 4.16 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 4.17 or latest
References
Related Vulnerabilities
WordPress Plugin Video Conferencing with Zoom Cross-Site Scripting (3.8.15)
Vanilla Forums Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4954)
PleskWin Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-43784)
WordPress Plugin Ninja Forms with File Uploads Extension Arbitrary File Upload (3.3.0)
IBM RTC Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-0748)