Description
WordPress Plugin Maps Widget for Google Maps-Google Maps Builder is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently enable the tracking functionality. WordPress Plugin Maps Widget for Google Maps-Google Maps Builder version 4.16 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 4.17 or latest
References
Related Vulnerabilities
WordPress Plugin Email Encoder-Protect Email Addresses Cross-Site Scripting (1.4.1)
Oracle Database Server Deserialization of Untrusted Data Vulnerability (CVE-2018-14719)
WordPress Plugin WP Database Reset Multiple Security Bypass Vulnerabilities (3.1)
WordPress Plugin Advanced Booking Calendar Cross-Site Scripting (1.6.7)
Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2019-14888)