46 matches found
CVE-2022-0206
The NewStatPress WordPress plugin before 1.3.6 does not properly escape the whatX parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting issues...
CVE-2017-18575
The newstatpress plugin before 1.2.5 for WordPress has multiple stored XSS issues...
EUVD-2025-202958
The NewStatPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a regex bypass in nspshortcode function in all versions up to, and including, 1.4.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticat...
PT-2025-50821
The NewStatPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a regex bypass in nsp shortcode function in all versions up to, and including, 1.4.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
EUVD-2015-9153
Malware in sbrugna...
EUVD-2015-4089
Malware in sbrugna...
EUVD-2015-9154
Malware in sbrugna...
EUVD-2017-11101
Malware in sbrugna...
CVE-2015-9312
The newstatpress plugin before 1.0.5 for WordPress has XSS related to an IMG element...
CVE-2015-9314
The newstatpress plugin before 1.0.4 for WordPress has XSS related to the Referer header...
CVE-2015-9315
The newstatpress plugin before 1.0.1 for WordPress has SQL injection...
CVE-2015-9313
The newstatpress plugin before 1.0.5 for WordPress has SQL injection related to an IMG element...
CVE-2017-20094
A vulnerability, which was classified as problematic, has been found in NewStatPress Plugin 1.2.4. This issue affects some unknown processing. The manipulation leads to basic cross site scripting Persistent. The attack may be initiated remotely. Upgrading to version 1.2.5 is able to address this...
CVE-2015-9311
The newstatpress plugin before 1.0.6 for WordPress has reflected XSS...
The vulnerability of the NewStatPress plugin of the WordPress content management system, related to the lack of protective measures for website structures, allows attackers to carry out cross-site scripting attacks.
The vulnerability of the NewStatPress plugin of the WordPress content management system is related to the lack of measures taken to protect the website structure when processing the whatX parameters. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks...
CVE-2017-20094
A vulnerability, which was classified as problematic, has been found in NewStatPress Plugin 1.2.4. This issue affects some unknown processing. The manipulation leads to basic cross site scripting Persistent. The attack may be initiated remotely. Upgrading to version 1.2.5 is able to address this...
CVE-2017-20094
A vulnerability, which was classified as problematic, has been found in NewStatPress Plugin 1.2.4. This issue affects some unknown processing. The manipulation leads to basic cross site scripting Persistent. The attack may be initiated remotely. Upgrading to version 1.2.5 is able to address this...
Cross site scripting
A vulnerability, which was classified as problematic, has been found in NewStatPress Plugin 1.2.4. This issue affects some unknown processing. The manipulation leads to basic cross site scripting Persistent. The attack may be initiated remotely. Upgrading to version 1.2.5 is able to address this...
CVE-2017-20094 NewStatPress Plugin Persistent cross site scriting
A vulnerability, which was classified as problematic, has been found in NewStatPress Plugin 1.2.4. This issue affects some unknown processing. The manipulation leads to basic cross site scripting Persistent. The attack may be initiated remotely. Upgrading to version 1.2.5 is able to address this...
CVE-2017-20094 NewStatPress Plugin Persistent cross site scriting
A vulnerability, which was classified as problematic, has been found in NewStatPress Plugin 1.2.4. This issue affects some unknown processing. The manipulation leads to basic cross site scripting Persistent. The attack may be initiated remotely. Upgrading to version 1.2.5 is able to address this...