Primary

Context

Basic Google Maps Placemarks WordPress Plugin Authorization Bypass Vulnerability

Vulnerability

A vulnerability exists in the Basic Google Maps Placemarks plugin for WordPress, in versions through 1.10.7, allowing authorization bypass. The plugin fails to properly verify user authorization for certain actions, enabling unauthenticated attackers to alter stored map coordinates (latitude and longitude).

Impact

Exploitation of this vulnerability allows for unauthorized modification of map coordinates, potentially leading to incorrect information being displayed or used within the application.

Remediation

Users are advised to update the Basic Google Maps Placemarks WordPress plugin to version 1.10.8 or a newer patched version.

Added: Apr 16, 2026, 6:31 AM

Updated: Apr 16, 2026, 6:31 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

8.1

remediation

0.0

relevance

6.1

threat

3.2

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

8.1

remediation

0.0

relevance

6.1

threat

3.2

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Basic Google Maps Placemarks WordPress Plugin Authorization Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating