Security Advisory
CVE-2020-12077
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
The mappress-google-maps-for-wordpress plugin before 2.53.9 for WordPress does not correctly implement AJAX functions with nonces (or capability checks), leading to remote code execution.