cleantalk
Vulnerabilities and Security Researches

MapifyLite (by MapifyPro), 6be590d56cf666ad67a6e008b71242e607d966ea

CVE, Research URL

6be590d56cf666ad67a6e008b71242e607d966ea

Home page URL

Security reports for MapifyLite (by MapifyPro)

Application

MapifyLite (by MapifyPro)

Published on
Mar 24, 2021
Research Description
MapifyLite (by MapifyPro) [mapifylite] < 4.0.0 MapifyLite and MapifyPro <= 3.3 - Authenticated Stored Cross-Site Scripting The MapifyLite and MapifyPro plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 3.3 due to insufficient input sanitization and output escaping. This makes it possible for attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Affected versions
max 4.0.0.
Status
vulnerable
Previous vulnerability researches
MapifyLite (by MapifyPro) (e5bfd53d-0d9a-42f2-8af8-5bb710bac828) , Jun 16, 2026
MapifyLite (by MapifyPro) (6be590d56cf666ad67a6e008b71242e607d966ea) , Jun 16, 2026
MapifyLite (by MapifyPro) (d7a357e358b4eb001b41f84d3531981914480734) , Jun 07, 2024
New vulnerability
Sliderby10Web (b034a2d9a95ce88dee45df6eb6eeb30de3de591b) , Jun 16, 2026
Sliderby10Web (c35af831bad5ffedbb22864b0901742357a86538) , Jun 16, 2026
Popup Maker &#8211; Popup for opt-ins, lead gen, &amp; more (c5aa28f4a3ad15c66fb8396a3d2622eb4d13577b) , Jun 16, 2026
Popup Maker &#8211; Popup for opt-ins, lead gen, &amp; more (474920b53a3f66864948949f8baa9e89ab06023b) , Jun 16, 2026
Popup Maker &#8211; Popup for opt-ins, lead gen, &amp; more (7e57cd4f4859826de00a8e2b09ee24fb7f2d824b) , Jun 16, 2026