CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

RedhatCVE•added 2025/12/20 9:15 a.m.•4 views

CVE-2025-14151

The SlimStat Analytics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'outboundresource' parameter in the slimtrack AJAX action in all versions up to, and including, 5.3.2. This is due to insufficient input sanitization and output escaping on user supplied attributes...

6.1CVSS5.2AI score0.00184EPSS

Exploits0References1

NVD•added 2025/12/19 9:15 a.m.•7 views

CVE-2025-14151

7.2CVSS0.00184EPSS

Exploits0References4

EUVD•added 2025/12/19 8:23 a.m.•0 views

EUVD-2025-204479

6.1CVSS4.8AI score0.00184EPSS

Exploits0References5

Cvelist•added 2025/12/19 8:23 a.m.•19 views

CVE-2025-14151 SlimStat Analytics <= 5.3.2 - Unauthenticated Stored Cross-Site Scripting

7.2CVSS0.00184EPSS

Exploits0References4

CVE•added 2025/12/19 8:23 a.m.•9 views

CVE-2025-14151

CVE-2025-14151 affects SlimStat Analytics for WordPress. The vulnerability is a Stored XSS via the outbound_resource attribute in the slimtrack AJAX action in all versions up to 5.3.2, caused by insufficient input sanitization and output escaping. Unauthenticated attackers can inject scripts that...

7.2CVSS4.9AI score0.00184EPSS

Exploits0References4

Vulnrichment•added 2025/12/19 8:23 a.m.•3 views

CVE-2025-14151 SlimStat Analytics <= 5.3.2 - Unauthenticated Stored Cross-Site Scripting

7.2CVSS4.9AI score0.00184EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by