WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blogging sites on servers with PHP and MySQL. WordPress plugin Inline Google Maps 5.11 and earlier versions are vulnerable to cross-site request forgery, which stems from not performing CSRF checks when updating its settings. An attacker could exploit the vulnerability through a CSRF attack to allow logged-in administrators to change them and sanitize and escape due to a lack of stored cross-site scripting.