MapSVG Vulnerability (Medium) – CVE-2025-47558

by | Feb 25, 2026 | Plugins

Attack Vectors MapSVG (WordPress plugin slug: mapsvg) is affected by CVE-2025-47558, a Medium-severity missing-authorization issue (CVSS 5.3). The vulnerability exists because a function lacks a required capability check in versions up to, but excluding, 8.6.13....

Nasa Core Vulnerability (Medium) – CVE-2025-39508

by | Feb 25, 2026 | Plugins

Attack Vectors The Nasa Core plugin (slug: nasa-core) is affected by a Medium-severity (CVSS 6.1) reflected cross-site scripting (XSS) vulnerability in versions below 6.4.4 (CVE-2025-39508). Reflected XSS typically relies on a victim being convinced to interact with a...