CVE-2018-14071

CRITICAL

Geo Mashup <1.10.4 - Info Disclosure

Title source: llm
STIX 2.1

Description

The Geo Mashup plugin before 1.10.4 for WordPress has insufficient sanitization of post editor and other user input.

Scores

CVSS v3 9.8
EPSS 0.0305
EPSS Percentile 86.0%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-20
Status published
Products (1)
cyberhobo/geo_mashup < 1.10.4
Published Jul 16, 2018
Tracked Since Feb 18, 2026