Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.5
Open User Map: Path Traversal Risk in 100plugins
CVE-2025-68002
Summary
The Open User Map plugin from 100plugins has a security flaw that allows an attacker to access files outside the intended directory. This could potentially allow unauthorized access to sensitive information. Update to version 1.4.17 or later to fix this issue.
Original title
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in 100plugins Open User Map open-user-map allows Path Traversal.This issue affects Open User Map: from n...
Original description
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in 100plugins Open User Map open-user-map allows Path Traversal.This issue affects Open User Map: from n/a through <= 1.4.16.
nvd CVSS3.1
6.5
Vulnerability type
CWE-22
Path Traversal
Published: 20 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026