Lucene search
K

49 matches found

CVE
CVE
added 2015/09/21 7:0 p.m.57 views

CVE-2015-6238

The CVE-2015-6238 entry concerns the Google Analyticator WordPress plugin. Vulnerable versions are prior to 6.4.9.6, where multiple XSS vectors exist through parameters on the google-analyticator page (ga_adsense, ga_admin_disable_DimentionIndex, ga_downloads_prefix, ga_downloads, ga_outbound_pre...

4.3CVSS6AI score0.02671EPSS
Exploits2References3Affected Software1
seebug.org
seebug.org
added 2015/09/01 12:0 a.m.15 views

Google Analyticator Multiple XSS Vulnerabilities

Proof of Concept URLs for XSS in Google Analyticator 6.4.9.4: Url http://example.com/wordpress/wp-admin/admin.php?page=google-analyticator Parameter Name gaadsense Parameter Type POST Attack Pattern x'" onmouseover=alert9 Url http://example.com/wordpress/wp-admin/admin.php?page=google-analyticato...

6.3AI score
Exploits0
WPVulnDB
WPVulnDB
added 2015/08/24 12:0 a.m.19 views

Google Analyticator <= 6.4.9.4 - Multiple Cross-Site Scripting (XSS)

The Google Analyticator WordPress plugin was affected by a Multiple Cross-Site Scripting XSS security vulnerability...

4.3CVSS1.8AI score0.02671EPSS
Exploits2References2Affected Software1
Patchstack
Patchstack
added 2015/08/14 12:0 a.m.29 views

WordPress Google Analyticator <= 6.4.9.5 - Multiple XSS

These vulnerabilities allow an attacker to inject arbitrary web script or HTML via the 1. gadownloadsprefix 2. gadownloads 3. gaadsense 4. gaadmindisableDimentionIndex 5. gaoutboundprefix parameter in the google-analyticator page to wp-admin/admin.php. Solution Update the plugin...

4.3CVSS2.3AI score0.02671EPSS
Exploits2References1Affected Software1
CNVD
CNVD
added 2015/07/08 12:0 a.m.6 views

WordPress Google Analyticator 'options-general.php' plugin cross-site request forgery vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.Google Analyticator is one of the Google Analytics plug-ins. A cross-site request forgery vulnerability exists in t...

8.8CVSS6.7AI score0.01249EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2015/06/20 12:0 a.m.46 views

WordPress Google Analyticator 6.4.9.3 CSRF

Title: Cross-Site Request Forgery in Google Analyticator Wordpress Plugin v6.4.9.3 before rev @1183563 Submitter: Nitin Venkatesh Product: Google Analyticator Wordpress Plugin Product URL: https://wordpress.org/plugins/google-analyticator/ Vulnerability Type: Cross-Site Request Forgery CWE-352...

Exploits0
WPVulnDB
WPVulnDB
added 2015/06/19 12:0 a.m.16 views

Google Analyticator <= 6.4.9.3 - Cross-Site Request Forgery (CSRF)

The Google Analyticator WordPress plugin was affected by a Cross-Site Request Forgery CSRF security vulnerability...

6.8CVSS3.6AI score0.01249EPSS
Exploits0References3Affected Software1
0day.today
0day.today
added 2010/03/28 12:0 a.m.29 views

WordPress Google Analyticator Plugin XSS

Exploit for php platform in category web applications ======================================== WordPress Google Analyticator Plugin XSS ======================================== Exploit Title: Google Analyticator wordpress plugin xss Date: 2010-03-27 Author: Bloox Home : http://darkns.com Bug Type...

7.1AI score
Exploits0
WPVulnDB
WPVulnDB
added 2009/07/29 12:0 a.m.21 views

Google Analyticator < 5.2.1 - XSS

The Google Analyticator WordPress plugin was affected by a XSS security vulnerability...

4.3CVSS2.3AI score0.00923EPSS
Exploits0Affected Software1
Rows per page
Query Builder