Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
MapSVG MapSVG Lite version 3.2.3 contains a Cross Site Request Forgery (CSRF) vulnerability in REST endpoint /wp-admin/admin-ajax.php?action=mapsvg_save that can result in an attacker can modify post data, including embedding javascript. This attack appears to be exploitable via the victim must be logged in to WordPress as an admin, and click a link. This vulnerability appears to have been fixed in 3.3.0 and later.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MapSVG Lite 跨站请求伪造漏洞
Vulnerability Description
MapSVG Lite是一款使用在WordPress中的地图插件。 MapSVG MapSVG Lite 3.2.3版本中的/wp-admin/admin-ajax.php?action=mapsvg_save URL存在跨站请求伪造漏洞。攻击者可利用该漏洞修改数据,包括嵌入JavaScript代码。
CVSS Information
N/A
Vulnerability Type
N/A