Vulnerabilities

CVE-2025-11307 - WP Google Maps < 9.0.48 - Unauthenticated Stored XSS

2025-11-11 0 views admin
CVE-2025-11307 - WP Google Maps < 9.0.48 - Unauthenticated Stored XSS

CVE ID : CVE-2025-11307 Published : Nov. 11, 2025, 6:15 a.m. | 1 hour, 24 minutes ago Description : The WP Go Maps (formerly WP Google Maps) WordPress plugin before 9.0.48 does not sanitize user input provided via an AJAX action, allowing unauthenticated users to store XSS payloads which are later retrieved from another AJAX call and output unescaped. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

Published
Nov. 11, 2025
Affected Product: WordPress
Impact: XSS

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2025-11307wordpress

More from Vulnerabilities

CVE-2024-42718 - Croogo CMS Path Traversal Vulnerability

CVE-2024-42718 - Croogo CMS Path Traversal Vulnerability

2025-12-26 0
CVE-2024-44065 - Cloudlog Blind SQL Injection

CVE-2024-44065 - Cloudlog Blind SQL Injection

2025-12-26 0
CVE-2025-66737 - Yealink Phone Directory Traversal Vulnerability

CVE-2025-66737 - Yealink Phone Directory Traversal Vulnerability

2025-12-26 0
CVE-2025-25341 - Libxmljs XML Denial-of-Service Vulnerability

CVE-2025-25341 - Libxmljs XML Denial-of-Service Vulnerability

2025-12-26 0

Trending

1

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

2025-10-27 • 189 views
2

CVE-2025-43939: Dell Unity OS Command Injection (High)

2025-10-30 • 148 views
3

Google disputes false claims of massive Gmail data breach

2025-10-30 • 130 views
4

Microsoft: DNS outage impacts Azure and Microsoft 365 services

2025-10-30 • 88 views
5

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting

2025-11-25 • 81 views