Filtered by vendor Mapplic Subscriptions
Filtered by product Mapplic Lite Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2012-10018 1 Mapplic 2 Mapplic, Mapplic Lite 2024-10-16 8.3 High
The Mapplic and Mapplic Lite plugins for WordPress are vulnerable to Server-Side Request Forgery in versions up to, and including 6.1, 1.0 respectively. This makes it possible for attackers to forgery requests coming from a vulnerable site's server and ultimately perform an XSS attack if requesting an SVG file.