Heroplugins Hero Maps Premium — known CVE vulnerabilities
Every CVE whose affected-product data names Heroplugins Hero Maps Premium, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-13781 — CVSS 6.5 (medium): The Hero Maps Premium plugin for WordPress is vulnerable to SQL Injection via several AJAX actions in all versions up to, and including…
CVE-2019-19134 — CVSS 6.1 (medium): The Hero Maps Premium plugin 2.2.1 and prior for WordPress is prone to unauthenticated XSS via the views/dashboard/index.php p parameter…