CVE-2019-10864

2019-04-23T18:29:00
ID CVE-2019-10864
Type cve
Reporter cve@mitre.org
Modified 2019-05-06T13:14:00

Description

The WP Statistics plugin through 12.6.2 for WordPress has XSS, allowing a remote attacker to inject arbitrary web script or HTML via the Referer header of a GET request.