Vulnerabilities > Mapsmarker > Leaflet Maps Marker > 3.12.5
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-21 | CVE-2024-38782 | Unspecified vulnerability in Mapsmarker Leaflet Maps Marker Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in MapsMarker.Com e.U. | 5.4 |
| 2023-02-06 | CVE-2022-4677 | Unspecified vulnerability in Mapsmarker Leaflet Maps Marker The Leaflet Maps Marker WordPress plugin before 3.12.7 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack. | 5.4 |