Lucene search

K

Analytics For WP Security Vulnerabilities

cve
cve

CVE-2024-32145

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PineWise WP Google Analytics Events allows Reflected XSS.This issue affects WP Google Analytics Events: from n/a through...

7.1CVSS

6.8AI Score

0.0004EPSS

2024-04-15 07:15 AM
27
cve
cve

CVE-2024-0405

The Burst Statistics – Privacy-Friendly Analytics for WordPress plugin, version 1.5.3, is vulnerable to Post-Authenticated SQL Injection via multiple JSON parameters in the /wp-json/burst/v1/data/compare endpoint. Affected parameters include 'browser', 'device', 'page_id', 'page_url', 'platform',.....

7.2CVSS

6.9AI Score

0.001EPSS

2024-01-17 05:15 AM
51
cve
cve

CVE-2022-3839

The Analytics for WP WordPress plugin through 1.5.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite...

4.8CVSS

4.7AI Score

0.001EPSS

2022-11-28 02:15 PM
22
4
cve
cve

CVE-2015-9273

The wp-slimstat (aka Slimstat Analytics) plugin before 4.1.6.1 for WordPress has XSS via an HTTP Referer header, or via a field associated with JavaScript-based Referer...

6.1CVSS

6AI Score

0.001EPSS

2022-10-03 04:16 PM
13
cve
cve

CVE-2019-15112

The wp-slimstat plugin before 4.8.1 for WordPress has...

6.1CVSS

6.3AI Score

0.001EPSS

2019-08-21 01:15 PM
21