3 matches found
CVE-2021-24922
The CVE-2021-24922 entry pertains to the Pixel Cat WordPress plugin, affected version(s) prior to 2.6.2. The vulnerability arises because the plugin does not perform CSRF validation when saving settings and fails to adequately sanitise/escape some inputs, enabling an attacker to leverage a logged...
CVE-2021-24972
The CVE-2021-24972 entry relates to the WordPress Pixel Cat plugin (Pixel Cat Lite) prior to version 2.6.3, where certain settings are not escaped. This can allow a high-privilege user to perform Stored Cross-Site Scripting even when unfiltered_html is disallowed. The vulnerability is described a...
CVE-2024-8544
Pixel Cat – Conversion Pixel Manager for WordPress (versions