Medium severity5.4NVD Advisory· Published Oct 25, 2024· Updated Jun 17, 2026
CVE-2024-9584
CVE-2024-9584
Description
The Image Map Pro plugin for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing capability check on the AJAX functions in versions up to, and including, 6.0.20. This makes it possible for authenticated attackers with contributor-level privileges or above, to add, update or delete map projects.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3<=6.0.20+ 1 more
- (no CPE)range: <=6.0.20
- (no CPE)
- imagemappro/Image Map Pro – Drag-and-drop Builder for Interactive Imagesv5Range: 0
Patches
Vulnerability mechanics
References
2- www.wordfence.com/threat-intel/vulnerabilities/id/7c632452-8b13-4f78-aa8a-3c92bef5907fnvdThird Party Advisory
- imagemappro.com/change-log/nvdRelease Notes
News mentions
0No linked articles in our index yet.