LS Google Map Router Plugin Vulnerability

The LS Google Map Router plugin is a WordPress plugin used to display Google Maps on websites. It's a popular choice for adding interactive maps to blogs and websites. However, due to insufficient input sanitization and output escaping, attackers can inject arbitrary web scripts into pages that will execute whenever a user accesses an injected page.

You're affected if you use LS Google Map Router. Specific version info not stated in the advisory.

To fix this vulnerability, you can upgrade to a newer version of the LS Google Map Router plugin. You can do this by:

1. Logging into your WordPress dashboard and going to the Plugins page.
2. Clicking on "Add New" and searching for "LS Google Map Router".
3. Selecting the latest version (currently 1.2.0) and clicking "Install Now".
4. Activating the plugin.

Alternatively, you can immediately mitigate this vulnerability by restricting network access to your WordPress installation and auditing admin account activity for suspicious access patterns.

• plugins.trac.wordpress.org
• plugins.trac.wordpress.org
• www.wordfence.com