cbcvebase.
CVE-2012-10018
published 2024-10-16

CVE-2012-10018: The Mapplic and Mapplic Lite plugins for WordPress are vulnerable to Server-Side Request Forgery in versions up to, and including 6.1, 1.0 respectively. This…

PriorityP275high8.3CVSS 3.1
AVNACLPRNUINSCCLILAL
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
1.13%
62.4th percentile
The Mapplic and Mapplic Lite plugins for WordPress are vulnerable to Server-Side Request Forgery in versions up to, and including 6.1, 1.0 respectively. This makes it possible for attackers to forgery requests coming from a vulnerable site's server and ultimately perform an XSS attack if requesting an SVG file.

Affected

4 ranges
VendorProductVersion rangeFixed in
mapplicmapplic<= 1.0
mapplicmapplic<= 6.1
seklermapplic_custom_interactive_map_wordpress_plugin< 6.26.2
seklermapplic_lite< 1.0.11.0.1

Detection & IOCsextracted from sources · hover to see the quote

sigma
title: WordPress Mapplic SSRF
logsource:
  category: webserver
detection:
  selection:
    cs-uri-query|contains:
      - "mapplic"
      - "mapplic-mapdata"
  condition: and
  • The vulnerability is exploitable in Mapplic plugin versions up to and including 6.1, and Mapplic Lite up to and including 1.0 for WordPress. Monitor for SSRF attempts that request external SVG files via these plugins, as the ultimate payload is XSS delivered through SVG content.
  • Detection rule includes a digest/signature for integrity verification of the rule itself: 4b0a004830460221008f1bc1143ff863d55b6f95fcfe8b6403a2a82cab71fc517b2ab6e0ca34ec4e7d022100c2da014bed3841ca76f2a1e8b7da14372f54ea1f9c290574f0851a84b7c9afff:922c64590222798bb761d5b6d8e72950
  • ·Vulnerability affects Mapplic plugin up to and including version 6.1, and Mapplic Lite up to and including version 1.0. Patched versions are not vulnerable.
  • ·The SSRF attack chain requires the attacker to cause the server to fetch an SVG file; the XSS payload is embedded within that SVG. Detection should account for both the outbound SSRF request and the inbound SVG response.

CVSS provenance

nvdv3.18.3HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
vulncheck8.3HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.