CVE-2025-14851 | YaMaps Plugin up to 0.6.40 on WordPress Shortcode yamap cross site scripting

A vulnerability was found in YaMaps Plugin up to 0.6.40 on WordPress. It has been classified as problematic. Affected is an unknown function of the component Shortcode Handler. The manipulation of the argument yamap leads to cross site scripting.

This vulnerability is documented as CVE-2025-14851. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More