CVE-2025-67983
CVE-2025-67983 affects the WordPress plugin WP Visitor Statistics (Real Time Traffic) (wp-stats-manager). Public details confirm a DOM-based/Stored XSS via shortcode input (e.g., visitor_stats) that requires an authenticated user (Contributor+). The Wordfence report attributes the vulnerability t...