cleantalk
Vulnerabilities and Security Researches

Mapster WP Maps, 19e7ea1e09f3af5b92d8a112012b7c6a59ada0d1

CVE, Research URL

19e7ea1e09f3af5b92d8a112012b7c6a59ada0d1

Home page URL

Security reports for Mapster WP Maps

Application

Mapster WP Maps

Published on
Jul 18, 2023
Research Description
Mapster WP Maps [mapster-wp-maps] < 1.2.36 WordPress Mapster WP Maps Plugin < 1.2.36 is vulnerable to Cross Site Scripting (XSS) Update the plugin to the latest version. Rafie Muhammad (Patchstack) discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Mapster WP Maps Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 1.2.36.
Affected versions
Min -, max 1.2.36.
Status
vulnerable
Previous vulnerability researches
Mapster WP Maps (CVE-2024-9235) , Oct 26, 2024
Mapster WP Maps (CVE-2024-10592) , Nov 17, 2024
Mapster WP Maps (19e7ea1e09f3af5b92d8a112012b7c6a59ada0d1) , Jun 07, 2024
Mapster WP Maps (CVE-2024-21744) , Jun 07, 2024
New vulnerability
Admin and Site Enhancements (ASE) (CVE-2024-13688) , Apr 30, 2025
WordPress Simple Shopping Cart (CVE-2025-3529) , Apr 30, 2025
SecuPress Free — WordPress Security (CVE-2025-3452) , Apr 30, 2025
Gutenverse &#8211; Gutenberg Blocks &#8211; Page Builder for Site Editor (CVE-2025-2893) , Apr 30, 2025
My Tickets (CVE-2025-3761) , Apr 29, 2025