A vulnerability was found in interactivegeomaps MapGeo Plugin up to 1.6.27 on WordPress. It has been classified as problematic . The affected element is the function display-map of the component Shortcode Handler . The manipulation of the argument map leads to basic cross site scripting. This vulnerability is traded as CVE-2025-15345 . It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is recommended.