Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin MapPress Maps for WordPress Security Bypass - CVE-2020-12675 - Vulnerability Database
WP Plugin Mappress Google Maps For Wordpress

WordPress Plugin MapPress Maps for WordPress Security Bypass - CVE-2020-12675

Critical
Reference: CVE-2020-12675
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-12675
Title: WordPress Plugin MapPress Maps for WordPress Security Bypass
Overview:

WordPress Plugin MapPress Maps for WordPress is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently download or delete arbitrary PHP files or upload arbitrary malicious PHP files. WordPress Plugin MapPress Maps for WordPress version 2.54.5 is vulnerable prior versions may also be affected.