19 matches found
CVE-2023-45001
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Castos Seriously Simple Stats allows SQL Injection.This issue affects Seriously Simple Stats: from n/a through 1.5.0...
EUVD-2023-49323
Malicious code in bioql PyPI...
EUVD-2023-49327
Malicious code in bioql PyPI...
CVE-2024-8738
The Seriously Simple Stats plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.6.0. This makes it possible for unauthenticated attackers to inject arbitrary web scripts i...
CVE-2024-8738 Seriously Simple Stats <= 1.6.0 - Reflected Cross-Site Scripting
The Seriously Simple Stats plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.6.0. This makes it possible for unauthenticated attackers to inject arbitrary web scripts i...
WordPress Seriously Simple Stats plugin <= 1.6.0 - Reflected Cross-Site Scripting vulnerability
Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin Seriously Simple Stats versions = 1.6.0...
WordPress Seriously Simple Stats Plugin <= 1.6.0 is vulnerable to Cross Site Scripting (XSS)
Software Seriously Simple Stats Type Plugin Vulnerable versions = 1.6.0 Fixed in 1.7.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8738 Patch priority Medium CVSS severity Medium 7.1 Developer Castos PSID f8f850e73781 Credits vgo0 Required...
WordPress plugin Seriously Simple Stats 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...
PT-2024-39215 · WordPress · Seriously Simple Stats
Name of the Vulnerable Software and Affected Versions: Seriously Simple Stats plugin for WordPress versions up to, and including, 1.6.0 Description: The issue arises from the use of add query arg without proper escaping on the URL, allowing unauthenticated attackers to inject arbitrary web script...
CVE-2023-45001
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Castos Seriously Simple Stats allows SQL Injection.This issue affects Seriously Simple Stats: from n/a through 1.5.0...
CVE-2023-45001
A vulnerability in Craig Hewitt Seriously Simple Stats seriously-simple-stats.This issue affects Seriously Simple Stats: from n/a through = 1.5.0...
Sql injection
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Castos Seriously Simple Stats allows SQL Injection.This issue affects Seriously Simple Stats: from n/a through 1.5.0...
CVE-2023-45001
CVE-2023-45001 affects the WordPress plugin Seriously Simple Stats (Castos) for versions up to and including 1.5.0 . The vulnerability is an SQL Injection caused by improper neutralization of input in SQL commands, enabling an attacker to manipulate queries and potentially access or modify data. ...
WordPress Plugin Seriously Simple Stats SQL Injection Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...
PT-2023-29343 · Unknown · Seriously Simple Stats
Name of the Vulnerable Software and Affected Versions: Seriously Simple Stats versions 1.5.0 and earlier Description: The issue is related to an SQL Injection vulnerability due to the improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks...
CVE-2023-45005
CVE-2023-45005 affects Castos Seriously Simple Stats plugin for WordPress (versions
WordPress Plugin Seriously Simple Stats Cross-Site Scripting Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress...
WordPress Seriously Simple Stats Plugin <= 1.5.0 is vulnerable to SQL Injection
Software Seriously Simple Stats Type Plugin Vulnerable versions = 1.5.0 Fixed in 1.5.1 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-45001 Patch priority Low CVSS severity Low 8.5 Developer Castos PSID 84cb56be8542 Credits Rafie Muhammad Patchstack Required privilege Podcas...
WordPress Seriously Simple Stats Plugin <= 1.5.1 is vulnerable to Cross Site Scripting (XSS)
Software Seriously Simple Stats Type Plugin Vulnerable versions = 1.5.1 Fixed in 1.5.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-45005 Patch priority Medium CVSS severity Medium 7.1 Developer Castos PSID 48b02f9f86c3 Credits Rafie Muhammad...