CVE-2024-12072
CVE-2024-12072 affects Analytics Cat – Google Analytics Made Easy, a WordPress plugin. It uses add_query_arg without sufficient escaping, causing a reflected Cross-Site Scripting vulnerability in all versions up to 1.1.2. The issue enables unauthenticated attackers to craft a link that, when a us...