Lucene search
+L
A3revPage View Count

5 matches found

cve
cve
added 2022/03/07 8:16 a.m.128 views

CVE-2022-0434

CVE-2022-0434 – WordPress Page Views Count plugin : The vulnerability affects versions before 2.4.15. The REST endpoint processes a post_ids parameter without proper sanitisation/escaping, leading to unauthenticated SQL injection. Documents from NVD/NVD-derived feeds and multiple security sources...

9.8CVSS9.7AI score0.14783EPSS
Web
cve
cve
added 2025/05/01 2:23 a.m.69 views

CVE-2025-2816

CVE-2025-2816 involves the WordPress Page View Count plugin (versions 2.8.0–2.8.4) where a missing capability check in the yellow_message_dontshow() function allows authenticated attackers with Subscriber-level access or higher to modify options, potentially causing a denial of service by updatin...

8.1CVSS7.7AI score0.00307EPSS
cve
cve
added 2023/02/06 7:59 p.m.67 views

CVE-2023-0095

The CVE-2023-0095 entry concerns the WordPress plugin Page View Count (before 2.6.1). The issue is that the plugin does not validate and escape certain block options when the Gutenberg block is embedded, enabling Stored XSS for users with the Contributor role or higher. Affects Page View Count

5.4CVSS5.3AI score0.00573EPSS
cve
cve
added 2022/11/03 7:26 p.m.66 views

CVE-2022-40131

The CVE-2022-40131 entry concerns the a3rev Software Page View Count plugin for WordPress, affected in versions

5.4CVSS4.7AI score0.00243EPSS
cve
cve
added 2021/08/09 10:4 a.m.47 views

CVE-2021-24509

The CVE-2021-24509 vulnerability affects the WordPress Page View Count plugin before 2.4.9. The pvc_stats shortcode’s postid parameter is not escaped, allowing Stored XSS when mishandled inputs reach the frontend. Impact notes indicate that contributors can trigger XSS (with admin approval possib...

5.4CVSS5.2AI score0.00624EPSS