CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Cvelist•added 2025/12/19 8:23 a.m.•16 views

CVE-2025-14151 SlimStat Analytics <= 5.3.2 - Unauthenticated Stored Cross-Site Scripting

The SlimStat Analytics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'outboundresource' parameter in the slimtrack AJAX action in all versions up to, and including, 5.3.2. This is due to insufficient input sanitization and output escaping on user supplied attributes...

7.2CVSS0.00184EPSS

Exploits0References4

CVE•added 2025/12/19 8:23 a.m.•7 views

CVE-2025-14151

CVE-2025-14151 affects SlimStat Analytics for WordPress. The vulnerability is a Stored XSS via the outbound_resource attribute in the slimtrack AJAX action in all versions up to 5.3.2, caused by insufficient input sanitization and output escaping. Unauthenticated attackers can inject scripts that...

7.2CVSS4.9AI score0.00184EPSS

Exploits0References4

EUVD•added 2025/12/19 8:23 a.m.•0 views

EUVD-2025-204479

6.1CVSS4.8AI score0.00184EPSS

Exploits0References5

Vulnrichment•added 2025/12/19 8:23 a.m.•2 views

CVE-2025-14151 SlimStat Analytics <= 5.3.2 - Unauthenticated Stored Cross-Site Scripting

7.2CVSS4.9AI score0.00184EPSS

Exploits0References4

Positive Technologies•added 2025/12/19 12:0 a.m.•4 views

PT-2025-52436

The SlimStat Analytics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'outbound resource' parameter in the slimtrack AJAX action in all versions up to, and including, 5.3.2. This is due to insufficient input sanitization and output escaping on user supplied attributes...

6.1CVSS5.2AI score0.00184EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by