The google-analyticator plugin before 5.2.1 for WordPress has insufficient HTML sanitization for Google Analytics API...
6.1CVSS
6.9AI Score
0.001EPSS
Cross-site request forgery (CSRF) vulnerability in Google Analyticator Wordpress Plugin before 6.4.9.3 rev...
8.8CVSS
6.8AI Score
0.002EPSS
Multiple cross-site scripting (XSS) vulnerabilities in the Google Analyticator plugin before 6.4.9.6 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) ga_adsense, (2) ga_admin_disable_DimentionIndex, (3) ga_downloads_prefix, (4) ga_downloads, or (5)...
6AI Score
0.002EPSS