Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-27888

Malicious code in bioql PyPI...

8.8CVSS9.2AI score0.00273EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2024-26133

Malicious code in bioql PyPI...

7.1CVSS8.6AI score0.00398EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:59 a.m.6 views

CVE-2024-1176

The HT Easy GA4 – Google Analytics WordPress Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the login function in all versions up to, and including, 1.1.5. This makes it possible for unauthenticated attackers to update the email...

5.3CVSS6.7AI score0.00611EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 7:55 a.m.27 views

CVE-2024-29094

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HasThemes HT Easy GA4 Google Analytics 4 allows Stored XSS.This issue affects HT Easy GA4 Google Analytics 4 : from n/a through 1.1.7...

7.1CVSS8.6AI score0.00398EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/03/20 12:0 a.m.18 views

HT Easy GA4 ( Google Analytics 4 ) < 1.1.8 - Reflected Cross-Site Scripting

Description The HT Easy GA4 Google Analytics 4 plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘functionorparam’ parameter in versions up to, and including, 1.1.7 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated...

7.1CVSS6.4AI score0.00398EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/03/19 5:15 p.m.32 views

CVE-2024-29094

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HasThemes HT Easy GA4 Google Analytics 4 allows Stored XSS.This issue affects HT Easy GA4 Google Analytics 4 : from n/a through 1.1.7...

7.1CVSS6.8AI score0.00398EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/19 4:38 p.m.15 views

CVE-2024-29094 WordPress HT Easy GA4 plugin <= 1.1.7 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HasThemes HT Easy GA4 Google Analytics 4 allows Stored XSS.This issue affects HT Easy GA4 Google Analytics 4 : from n/a through 1.1.7...

7.1CVSS6.7AI score0.00398EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/19 4:38 p.m.33 views

CVE-2024-29094 WordPress HT Easy GA4 plugin <= 1.1.7 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HasThemes HT Easy GA4 Google Analytics 4 allows Stored XSS.This issue affects HT Easy GA4 Google Analytics 4 : from n/a through 1.1.7...

7.1CVSS7AI score0.00398EPSS
Exploits0References1
CVE
CVE
added 2024/03/19 4:38 p.m.72 views

CVE-2024-29094

CVE-2024-29094 relates to HT Easy GA4 (HasThemes) for WordPress, vulnerability type: Stored XSS due to Improper Neutralization of Input During Web Page Generation. Affected software: HT Easy GA4 (Google Analytics 4) plugin; affected range: from n/a through version 1.1.7. The impact is stored cros...

7.1CVSS8.6AI score0.00398EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/03/19 12:0 a.m.5 views

WordPress Plugin HT Easy GA4 Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. WordPress Plugin HT Easy GA4 suffer...

7.1CVSS6AI score0.00398EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/03/15 12:0 a.m.9 views

WordPress HT Easy GA4 ( Google Analytics 4 ) Plugin <= 1.1.7 is vulnerable to Cross Site Scripting (XSS)

Software HT Easy GA4 Google Analytics 4 Type Plugin Vulnerable versions = 1.1.7 Fixed in 1.1.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29094 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8f8e72c6e71d Credits Yudistira Arya...

7.1CVSS6.5AI score0.00398EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/03/13 3:26 p.m.14 views

CVE-2024-1176 HT Easy GA4 – Google Analytics WordPress Plugin <= 1.1.5 - Missing Authorization to Unauthenticated GA4 Email Update

The HT Easy GA4 – Google Analytics WordPress Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the login function in all versions up to, and including, 1.1.5. This makes it possible for unauthenticated attackers to update the email...

5.3CVSS6.7AI score0.00611EPSS
Exploits0References3
CVE
CVE
added 2024/03/13 3:26 p.m.67 views

CVE-2024-1176

CVE-2024-1176 affects the HT Easy GA4 – Google Analytics WordPress Plugin. The vulnerability is a missing capability check in login() that enables unauthenticated modification of the GA4 email. Affected versions are all up to and including 1.1.5. Remediation: upgrade to 1.1.6 or later (Wordfence/...

5.3CVSS6AI score0.00611EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2023/06/15 12:3 p.m.49 views

CVE-2023-23802

CVE-2023-23802 is a CSRF vulnerability in HasThemes HT Easy GA4 (Google Analytics 4) WordPress plugin, affecting versions

8.8CVSS6.5AI score0.00273EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/06/15 12:3 p.m.30 views

CVE-2023-23802 WordPress HT Easy GA4 ( Google Analytics 4 ) Plugin <= 1.0.6 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in HasThemes HT Easy GA4 Google Analytics 4 plugin = 1.0.6 versions...

4.3CVSS9AI score0.00273EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2023/03/08 12:0 a.m.23 views

HT Easy GA4 ( Google Analytics 4 ) < 1.0.7 - Plugin Activation via CSRF

The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

8.8CVSS6.7AI score0.00273EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2023/03/08 12:0 a.m.16 views

WordPress HT Easy GA4 ( Google Analytics 4 ) Plugin <= 1.0.6 is vulnerable to Cross Site Request Forgery (CSRF)

Software HT Easy GA4 Google Analytics 4 Type Plugin Vulnerable versions = 1.0.6 Fixed in 1.0.7 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-23802 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 3bbb052c8933 Credits Istv...

8.8CVSS6.6AI score0.00273EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder