3 matches found
CVE-2012-0896
CVE-2012-0896 affects the WordPress Count Per Day plugin, via download.php the f parameter allows absolute path traversal to read arbitrary files. The issue is in Count Per Day
CVE-2012-0895
The CVE-2012-0895 issue affects the WordPress Count Per Day plugin; XSS vulnerability in map/map.php can be triggered via the map parameter and is present in versions before 3.1.1. Remediation: upgrade to version 3.1.1 or later. If upgrading is not possible, apply vendor advisories/workarounds fr...
CVE-2012-3434
The CVE-2012-3434 issue affects the WordPress Count Per Day plugin (Count Per Day module) prior to version 3.2, specifically the userperspan.php file. The underlying vulnerability is multiple XSS flaws that allow remote attackers to inject arbitrary script/HTML through the parameters page, datemi...