Cross-Site Request Forgery Vulnerability in Interactive UK Regional Map by WordPress
CVE-2025-49445
4.3MEDIUM
What is CVE-2025-49445?
A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the Interactive UK Regional Map plugin for WordPress. This vulnerability allows attackers to perform unauthorized actions on behalf of authenticated users, potentially leading to malicious changes in the settings of the plugin. If exploited, this issue could compromise the integrity of the plugin's configuration without user consent, thereby affecting the security of the WordPress site. Users of versions up to 2.0 are particularly at risk and should evaluate their installations.
Affected Version(s)
Interactive UK Regional Map <= 2.0