CVE-2024-9028 — CVSS 6.4 (medium): The WP GPX Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'sgpx' shortcode in all versions up to…
CVE-2023-44234 — CVSS 4.3 (medium): Missing Authorization vulnerability in Bastianon Massimo WP GPX Map.This issue affects WP GPX Map: from n/a through 1.7.08.