CVE-2012-10018
published 2024-10-16CVE-2012-10018: The Mapplic and Mapplic Lite plugins for WordPress are vulnerable to Server-Side Request Forgery in versions up to, and including 6.1, 1.0 respectively. This…
PriorityP275high8.3CVSS 3.1
AVNACLPRNUINSCCLILAL
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
1.13%
62.4th percentile
The Mapplic and Mapplic Lite plugins for WordPress are vulnerable to Server-Side Request Forgery in versions up to, and including 6.1, 1.0 respectively. This makes it possible for attackers to forgery requests coming from a vulnerable site's server and ultimately perform an XSS attack if requesting an SVG file.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mapplic | mapplic | <= 1.0 | — |
| mapplic | mapplic | <= 6.1 | — |
| sekler | mapplic_custom_interactive_map_wordpress_plugin | < 6.2 | 6.2 |
| sekler | mapplic_lite | < 1.0.1 | 1.0.1 |
Detection & IOCsextracted from sources · hover to see the quote
sigma
title: WordPress Mapplic SSRF
logsource:
category: webserver
detection:
selection:
cs-uri-query|contains:
- "mapplic"
- "mapplic-mapdata"
condition: and- →The vulnerability is exploitable in Mapplic plugin versions up to and including 6.1, and Mapplic Lite up to and including 1.0 for WordPress. Monitor for SSRF attempts that request external SVG files via these plugins, as the ultimate payload is XSS delivered through SVG content. ↗
- →Detection rule includes a digest/signature for integrity verification of the rule itself: 4b0a004830460221008f1bc1143ff863d55b6f95fcfe8b6403a2a82cab71fc517b2ab6e0ca34ec4e7d022100c2da014bed3841ca76f2a1e8b7da14372f54ea1f9c290574f0851a84b7c9afff:922c64590222798bb761d5b6d8e72950
- ·Vulnerability affects Mapplic plugin up to and including version 6.1, and Mapplic Lite up to and including version 1.0. Patched versions are not vulnerable. ↗
- ·The SSRF attack chain requires the attacker to cause the server to fetch an SVG file; the XSS payload is embedded within that SVG. Detection should account for both the outbound SSRF request and the inbound SVG response. ↗
CVSS provenance
nvdv3.18.3HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
vulncheck8.3HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-v3rv-7532-9gg6: The Mapplic and Mapplic Lite plugins for WordPress are vulnerable to Server-Side Request Forgery in versions up to, and including 6
ghsa_unreviewed·2024-10-16
CVE-2012-10018 [HIGH] CWE-918 GHSA-v3rv-7532-9gg6: The Mapplic and Mapplic Lite plugins for WordPress are vulnerable to Server-Side Request Forgery in versions up to, and including 6
The Mapplic and Mapplic Lite plugins for WordPress are vulnerable to Server-Side Request Forgery in versions up to, and including 6.1, 1.0 respectively. This makes it possible for attackers to forgery requests coming from a vulnerable site's server and ultimately perform an XSS attack if requesting an SVG file.
VulnCheck
Mapplic and Mapplic Lite plugins for WordPress SVG File Server Side Request Forgery Vulnerability
vulncheck·2012·CVSS 8.3
CVE-2012-10018 [HIGH] Mapplic and Mapplic Lite plugins for WordPress SVG File Server Side Request Forgery Vulnerability
Mapplic and Mapplic Lite plugins for WordPress SVG File Server Side Request Forgery Vulnerability
The Mapplic and Mapplic Lite plugins for WordPress are vulnerable to Server-Side Request Forgery in versions up to, and including 6.1, 1.0 respectively. This makes it possible for attackers to forgery requests coming from a vulnerable site's server and ultimately perform an XSS attack if requesting an SVG file.
Affected: sekler Mapplic/Mapplic Lite
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://www.wordfence.com/threat-intel/vulnerabilities/detail/mapplic-lite-and-mapplic-various-versions-server-side-request-forgery-to-cross-site-scirpting
No detection rules found.
Nuclei
WordPress Mapplic <= 6.1 / Mapplic Lite <= 1.0 - Authenticated Stored XSS via SVG File Upload
nuclei·CVSS 8.3
CVE-2012-10018 [HIGH] WordPress Mapplic <= 6.1 / Mapplic Lite <= 1.0 - Authenticated Stored XSS via SVG File Upload
WordPress Mapplic ", "mapplic-mapdata")
condition: and
# digest: 4b0a004830460221008f1bc1143ff863d55b6f95fcfe8b6403a2a82cab71fc517b2ab6e0ca34ec4e7d022100c2da014bed3841ca76f2a1e8b7da14372f54ea1f9c290574f0851a84b7c9afff:922c64590222798bb761d5b6d8e72950
No writeups or analysis indexed.
2024-10-16
Published
Exploited in the wild