CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-9584

The Image Map Pro plugin for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing capability check on the AJAX functions in versions up to, and including, 6.0.20. This makes it possible for authenticated attackers with contributor-level privileges or above, to add, update or delete map projects.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 25.9%

CVSS Severity

CVSS v3 Score 5.4

References

Products affected by CVE-2024-9584

Webcraftplugins » Image Map Pro » Version: N/A

cpe:2.3:a:webcraftplugins:image_map_pro:-
Webcraftplugins » Image Map Pro » Version: 6.0.16

cpe:2.3:a:webcraftplugins:image_map_pro:6.0.16
Webcraftplugins » Image Map Pro » Version: 6.0.17

cpe:2.3:a:webcraftplugins:image_map_pro:6.0.17
Webcraftplugins » Image Map Pro » Version: 6.0.18

cpe:2.3:a:webcraftplugins:image_map_pro:6.0.18
Webcraftplugins » Image Map Pro » Version: 6.0.19

cpe:2.3:a:webcraftplugins:image_map_pro:6.0.19
Webcraftplugins » Image Map Pro » Version: 6.0.20

cpe:2.3:a:webcraftplugins:image_map_pro:6.0.20

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-9584

Products

Pricing

Contact Us