Basic Google Maps Placemarks, CVE-2026-3581

CVE, Research URL: CVE-2026-3581
Home page URL: Security reports for Basic Google Maps Placemarks
Application: Basic Google Maps Placemarks
Published on: Apr 16, 2026
Research Description: The Basic Google Maps Placemarks plugin for WordPress is vulnerable to authorization bypass in versions up to, and including, 1.10.7. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for unauthenticated attackers to modify stored map latitude and longitude options.
Affected versions: max 1.10.8.
Status: vulnerable