2 matches found
CVE-2024-8662
CVE-2024-8662: Koko Analytics for WordPress is vulnerable to Reflected Cross-Site Scripting due to insufficient escaping in add_query_arg, affecting all versions up to and including 1.3.12. Unauthenticated attackers can cause script injection when a user is tricked into performing an action (e.g....
CVE-2026-22850
Koko Analytics for WordPress (