MapPress < 2.88.17 – Contributor+ Stored XSS via Map Settings | CVE 2023-7225 | Plugin Vulnerabilities

Description

The plugin is vulnerable to Stored Cross-Site Scripting via the width and height parameters, allowing with contributor access and above to perform Stored XSS attacks

Proof of Concept

- Go to Plugin’s page /wp-admin/admin.php?page=mappress_maps
- Add New Map and search any location you want.
- Add XSS Payload on Map Settings on width or height column '><img src onerror=alert(/XSS/)>
- Save Maps
- Copy your created Maps’ shortcode then paste in a new post

Affects Plugins

mappress-google-maps-for-wordpress

Fixed in 2.88.17

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/fce76126-0cfd-464f-b644-45d4301e958d

URL

https://advisory.abay.sh/cve-2023-7225/

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

Akbar Kustirama

Verified

No

WPVDB ID

77101336-acee-4c35-8327-64bcd4b14ba9

Timeline

Publicly Published

2024-01-29 (about 2 years ago)

Added

2024-01-31 (about 2 years ago)

Last Updated

2024-01-31 (about 2 years ago)

Other

Published

Title

Published

2026-01-27

Title

Membee Login < 2.3.7 - Unauthenticated Stored Cross-Site Scripting

Published

2014-08-01

Title

Mingle Forum 1.0.33.3 - fs-admin.php togroupusers Parameter XSS

Published

2024-12-17

Title

Inline Footnotes <= 2.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

Published

2025-05-19

Title

Cost Calculator Builder < 3.5.0 - Authenticated (Administrator+) Stored Cross-Site Scripting

Published

2023-08-14

Title

Optima Express + MarketBoost IDX < 7.3.1 - Admin+ Stored XSS