CVE-2026-8386

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions WP Go Maps versions prior to 10.0.10

Description The plugin fails to perform approval-state filtering on its public single-marker REST endpoint. This allows unauthenticated users to retrieve marker records that have not been approved by an administrator for public display. This information disclosure may include geographic coordinates and personally identifiable information (PII) contained within the address and description fields.

Recommendations Update to version 10.0.10 or later.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2026-8386

Affected Products

Wp Go Maps

CVE-2026-8386

Related Identifiers

Affected Products

References · 3