Critical WP Maps Pro Vulnerability Allows Unauthenticated Administrator Takeover

1 / 2

Critical WP Maps Pro Vulnerability Allows Unauthenticated Administrator Takeover

DEV Community: infosec·BeyondMachines·3 days ago

#iqlrYxkc

#dev #accounts #wordpress #maps #critical #attackers

Reading 0:00

15s threshold

Summary

WP Maps Pro versions 6.1.0 and earlier contain a critical vulnerability (CVE-2026-8732) that allows unauthenticated attackers to create administrator accounts and take full control of WordPress sites.

Take Action:

If you use the WP Maps Pro WordPress plugin, this is urgent. Update to version 6.1.1 immediately to patch this critical flaw that lets attackers create admin accounts on your site. Also, audit your WordPress user list for any suspicious admin accounts (especially ones tied to support@flippercode.com) and remove them.

Read the full article on BeyondMachines

This article was originally published on BeyondMachines

Menu