Medium severity5.4NVD Advisory· Published Mar 26, 2018· Updated Jun 17, 2026
CVE-2018-9020
CVE-2018-9020
Description
The Events Manager plugin before 5.8.1.2 for WordPress allows XSS via the events-manager.js mapTitle parameter in the Google Maps miniature.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<5.8.1.2+ 1 more
- (no CPE)range: <5.8.1.2
- (no CPE)range: <5.8.1.2
Patches
Vulnerability mechanics
References
4- www.gubello.me/blog/events-manager-authenticated-stored-xss/nvdExploitThird Party Advisory
- wp-events-plugin.com/blog/2018/01/15/events-manager-5-8-1-2-security-release/nvdThird Party Advisory
- wordpress.org/plugins/events-manager/nvdThird Party Advisory
- www.youtube.com/watchnvdThird Party Advisory
News mentions
0No linked articles in our index yet.