GMap Targeting Reflected Cross-Site Scripting in RealMag777 GMap Targeting

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.1

GMap Targeting Reflected Cross-Site Scripting in RealMag777 GMap Targeting

CVE-2025-67990

Summary

An attacker can inject malicious code into GMap Targeting, potentially stealing user data or taking control of a user's account. This affects GMap Targeting versions up to 1.1.7, so update to a fixed version as soon as possible.

Original title

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RealMag777 GMap Targeting gmap-targeting allows Reflected XSS.This issue affects GMap Targeting...

Original description

nvd CVSS3.1 7.1

Vulnerability type

CWE-79 Cross-site Scripting (XSS)

https://patchstack.com/database/Wordpress/Plugin/gmap-targeting/vulnerability/wo...

Published: 20 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026