NewsSecurity Vulnerabilities

WordPress WP Go Maps Plugin is vulnerable to Cross Site Request Forgery (CVE-2025-24742)

Jason Davies 353 Views 0 Comments 0 min read

CVE number = CVE-2025-24742

There is a Cross-Site Request Forgery (CSRF) vulnerability in WP Go Maps (formerly WP Google Maps) WP Go Maps.

This issue affects WP Go Maps: from n/a through 9.0.40.

This could allow a malicious actor to force higher privileged users to execute unwanted actions under their current authentication.

Update to version 9.0.41 or later to remove the vulnerability.

Jason Davies

I am one of the editors here at www.systemtek.co.uk I am a UK based technology professional, with an interest in computer security and telecoms.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.