49 matches found
CVE-2015-6238
The CVE-2015-6238 entry concerns the Google Analyticator WordPress plugin. Vulnerable versions are prior to 6.4.9.6, where multiple XSS vectors exist through parameters on the google-analyticator page (ga_adsense, ga_admin_disable_DimentionIndex, ga_downloads_prefix, ga_downloads, ga_outbound_pre...
Google Analyticator Multiple XSS Vulnerabilities
Proof of Concept URLs for XSS in Google Analyticator 6.4.9.4: Url http://example.com/wordpress/wp-admin/admin.php?page=google-analyticator Parameter Name gaadsense Parameter Type POST Attack Pattern x'" onmouseover=alert9 Url http://example.com/wordpress/wp-admin/admin.php?page=google-analyticato...
Google Analyticator <= 6.4.9.4 - Multiple Cross-Site Scripting (XSS)
The Google Analyticator WordPress plugin was affected by a Multiple Cross-Site Scripting XSS security vulnerability...
WordPress Google Analyticator <= 6.4.9.5 - Multiple XSS
These vulnerabilities allow an attacker to inject arbitrary web script or HTML via the 1. gadownloadsprefix 2. gadownloads 3. gaadsense 4. gaadmindisableDimentionIndex 5. gaoutboundprefix parameter in the google-analyticator page to wp-admin/admin.php. Solution Update the plugin...
WordPress Google Analyticator 'options-general.php' plugin cross-site request forgery vulnerability
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.Google Analyticator is one of the Google Analytics plug-ins. A cross-site request forgery vulnerability exists in t...
WordPress Google Analyticator 6.4.9.3 CSRF
Title: Cross-Site Request Forgery in Google Analyticator Wordpress Plugin v6.4.9.3 before rev @1183563 Submitter: Nitin Venkatesh Product: Google Analyticator Wordpress Plugin Product URL: https://wordpress.org/plugins/google-analyticator/ Vulnerability Type: Cross-Site Request Forgery CWE-352...
Google Analyticator <= 6.4.9.3 - Cross-Site Request Forgery (CSRF)
The Google Analyticator WordPress plugin was affected by a Cross-Site Request Forgery CSRF security vulnerability...
WordPress Google Analyticator Plugin XSS
Exploit for php platform in category web applications ======================================== WordPress Google Analyticator Plugin XSS ======================================== Exploit Title: Google Analyticator wordpress plugin xss Date: 2010-03-27 Author: Bloox Home : http://darkns.com Bug Type...
Google Analyticator < 5.2.1 - XSS
The Google Analyticator WordPress plugin was affected by a XSS security vulnerability...