Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/02 6:47 a.m.8 views

CVE-2025-3953

The WP Statistics – The Most Popular Privacy-Friendly Analytics Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'optionUpdater' function in all versions up to, and including, 14.13.3. This makes it possible for authenticated...

6.5CVSS6.6AI score0.00226EPSS
Exploits0References1
NVD
NVD
added 2025/04/30 6:15 a.m.27 views

CVE-2025-3953

The WP Statistics – The Most Popular Privacy-Friendly Analytics Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'optionUpdater' function in all versions up to, and including, 14.13.3. This makes it possible for authenticated...

5.4CVSS0.00226EPSS
Exploits0References3
Circl
Circl
added 2025/04/30 6:14 a.m.9 views

CVE-2025-3953

creationtimestamp| type| source ---|---|--- 2025-04-30 06:14:20+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13986 2025-04-30 09:33:17+00:00| seen| https://t.me/cvedetector/24072 2025-04-30 10:00:15+00:00| seen|...

5.4CVSS8.7AI score0.00226EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/04/30 5:23 a.m.4 views

CVE-2025-3953 WP Statistics – The Most Popular Privacy-Friendly Analytics Plugin <= 14.13.3 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Settings Update

The WP Statistics – The Most Popular Privacy-Friendly Analytics Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'optionUpdater' function in all versions up to, and including, 14.13.3. This makes it possible for authenticated...

5.4CVSS6.2AI score0.00226EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/04/30 5:23 a.m.29 views

CVE-2025-3953 WP Statistics – The Most Popular Privacy-Friendly Analytics Plugin <= 14.13.3 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Settings Update

The WP Statistics – The Most Popular Privacy-Friendly Analytics Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'optionUpdater' function in all versions up to, and including, 14.13.3. This makes it possible for authenticated...

5.4CVSS0.00226EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/04/29 9:22 p.m.7 views

WordPress WP Statistics plugin <= 14.13.3 - Missing Authorization to Authenticated (Subscriber+) Arbitrary plugin Settings Update vulnerability

Missing Authorization to Authenticated Subscriber+ Arbitrary plugin Settings Update vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin WP Statistics versions = 14.13.3...

6.5CVSS8.7AI score0.00226EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder