CVE-2023-26015 - How SQL Injection Broke MapPress Maps for WordPress (mappress-google-maps-for-wordpress) – With Exploit Details
In early 2023, a serious vulnerability was discovered in a popular WordPress plugin called MapPress Maps for WordPress (a.k.a. mappress-google-maps-for-wordpress). Identified as CVE-2023-26015,
CVE-2023-4840: MapPress Maps for WordPress Plugin Vulnerable to Stored Cross-Site Scripting in Versions up to 2.88.4
Summary: The MapPress Maps for WordPress plugin (versions up to 2.88.4) has been found to be vulnerable to Stored Cross-Site Scripting (XSS) attacks