cleantalk
Vulnerabilities and Security Researches

MapPress Maps for WordPress, CVE-2020-12077

CVE, Research URL

CVE-2020-12077

Home page URL

Security reports for MapPress Maps for WordPress

Application

MapPress Maps for WordPress

Published on
Apr 23, 2020
Research Description
The mappress-google-maps-for-wordpress plugin before 2.53.9 for WordPress does not correctly implement AJAX functions with nonces (or capability checks), leading to remote code execution.
Affected versions
max 2.53.9.
Status
vulnerable
Previous vulnerability researches
MapPress Maps for WordPress (CVE-2025-2055) , Apr 05, 2025
MapPress Maps for WordPress (CVE-2025-2162) , Apr 23, 2025
MapPress Maps for WordPress (CVE-2024-10715) , Nov 07, 2024
MapPress Maps for WordPress (CVE-2020-12675) , Jun 07, 2024
MapPress Maps for WordPress (CVE-2022-0537) , Jun 07, 2024
New vulnerability
GitHub Gist Shortcode Plugin (CVE-2025-12667) , Dec 12, 2025
Cryptocurrency Payment Gateway for WooCommerce (CVE-2025-12392) , Dec 12, 2025
Wbcom Designs – Private Community for BuddyPress (CVE-2025-67582) , Dec 12, 2025
WP-Walla (CVE-2025-12589) , Dec 12, 2025
Master Addons for Elementor (CVE-2025-63055) , Dec 12, 2025