CVE-2025-52797 Information

Description

Cross-Site Request Forgery (CSRF) vulnerability in josepsitjar StoryMap allows SQL Injection. This issue affects StoryMap: from n/a through 2.1.

Reference

https://patchstack.com/database/wordpress/plugin/wp-storymap/vulnerability/wordpress-storymap-plugin-plugin-2-1-cross-site-request-forgery-csrf-vulnerability?_s_id=cve

Related CNNVD

CNNVD-202508-1732 (Published: 2025-08-14)