WordPress Plugin Vulnerabilities

WP Bing Map Pro < 5.0 - CSRF

Description

Cross-Site Request Forgery (CSRF) vulnerability in dan009 WP Bing Map Pro plugin < 5.0 versions.

Affects Plugins

Plugin icon
api-bing-map-2018
Fixed in 5.0

References

CVE
CVE-2023-45052

Classification

Type
CSRF
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352
CVSS
4.3 (medium)

Miscellaneous

Original Researcher
Mika
Verified
No
WPVDB ID
ddb342ee-8685-41a8-bb17-e6338be728ed

Timeline

Publicly Published
2023-10-12 (about 7 months ago)
Added
2023-10-12 (about 7 months ago)
Last Updated
2023-10-12 (about 7 months ago)

Other

Published
Title
Published
2022-04-25
Title
Tracked Tweets <= 0.2.9 - Stored Cross-Site Scripting via CSRF
Published
2018-05-15
Title
Metronet Tag Manager < 1.2.9 - Cross-Site Request Forgery (CSRF)
Published
2023-07-19
Title
WP Emoji One <= 0.6.0 - Settings Update via CSRF
Published
2023-07-12
Title
Justin Klein WP Social AutoConnect < 4.6.2 - Cross-Site Request Forgery
Published
2014-09-17
Title
WP RSS Multi Importer < 3.14 - Cross Site Request Forgery (CSRF)