Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

ImageMapper — Vulnerabilities & Security Advisories 4

All 4 CVE vulnerabilities found in ImageMapper, with AI-generated Chinese analysis, references, and POCs.

Vendor: spikefinned

CVE IDTitleCVSSSeverityPublished
CVE-2023-5507 ImageMapper <= 1.2.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode CWE-79 6.4 Medium2023-11-07
CVE-2023-5532 ImageMapper <= 1.2.6 - Cross-Site Request Forgery to Stored Cross-Site Scripting via imgmap_save_area_title CWE-352 6.1 Medium2023-11-07
CVE-2023-5975 ImageMapper <= 1.2.6 - Cross-Site Request Forgery to Plugin Settings Change via ajax CWE-352 4.3 Medium2023-11-07
CVE-2023-5506 ImageMapper <= 1.2.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Page/Post Deletion via imgmap_delete_area_ajax CWE-862 5.4 Medium2023-11-07

All 4 known CVE vulnerabilities affecting ImageMapper with full Chinese analysis, references, and POCs where available.