191 matches found
CVE-2025-14151
CVE-2025-14151 affects SlimStat Analytics for WordPress. The vulnerability is a Stored XSS via the outbound_resource attribute in the slimtrack AJAX action in all versions up to 5.3.2, caused by insufficient input sanitization and output escaping. Unauthenticated attackers can inject scripts that...
CVE-2025-14151 SlimStat Analytics <= 5.3.2 - Unauthenticated Stored Cross-Site Scripting
The SlimStat Analytics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'outboundresource' parameter in the slimtrack AJAX action in all versions up to, and including, 5.3.2. This is due to insufficient input sanitization and output escaping on user supplied attributes...
CVE-2025-14151 SlimStat Analytics <= 5.3.2 - Unauthenticated Stored Cross-Site Scripting
The SlimStat Analytics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'outboundresource' parameter in the slimtrack AJAX action in all versions up to, and including, 5.3.2. This is due to insufficient input sanitization and output escaping on user supplied attributes...
EUVD-2025-204479
The SlimStat Analytics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'outboundresource' parameter in the slimtrack AJAX action in all versions up to, and including, 5.3.2. This is due to insufficient input sanitization and output escaping on user supplied attributes...
WordPress SlimStat Analytics plugin <= 5.3.2 - Unauthenticated Stored Cross-Site Scripting vulnerability
Unauthenticated Stored Cross-Site Scripting vulnerability discovered by Supakiad S. m3ez - E-CQURITY Thailand in WordPress Plugin Slimstat Analytics versions = 5.3.2...
WordPress plugin SlimStat Analytics 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin... A cross-site scripti...
PT-2025-52436
The SlimStat Analytics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'outbound resource' parameter in the slimtrack AJAX action in all versions up to, and including, 5.3.2. This is due to insufficient input sanitization and output escaping on user supplied attributes...
EUVD-2023-38118
Malicious code in bioql PyPI...
EUVD-2023-54452
Malicious code in bioql PyPI...
EUVD-2023-54451
Malicious code in bioql PyPI...
EUVD-2022-48263
Malicious code in bioql PyPI...
EUVD-2024-50003
Malicious code in bioql PyPI...
EUVD-2023-54450
Malicious code in bioql PyPI...
EUVD-2023-45232
Malicious code in bioql PyPI...
EUVD-2022-51665
Malicious code in bioql PyPI...
EUVD-2022-48270
Malicious code in bioql PyPI...
EUVD-2024-16848
Malicious code in bioql PyPI...
CVE-2024-1073
The SlimStat Analytics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'filterarray' parameter in all versions up to, and including, 5.1.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with subscriber-leve...
CVE-2023-0630
The Slimstat Analytics WordPress plugin before 4.9.3.3 does not prevent subscribers from rendering shortcodes that concatenates attributes directly into an SQL query...
CVE-2023-33994
Missing Authorization vulnerability in VeronaLabs Slimstat Analytics wp-slimstat allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Slimstat Analytics: from n/a through = 5.0.5.1...