Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
plugins-market wp visitor statistics vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-0600
The WP Visitor Statistics (Real Time Traffic) WordPress plugin prior to 6.9 does not escape user input which is concatenated to an SQL query, allowing unauthenticated visitors to conduct SQL Injection attacks.
Plugins-market Wp Visitor Statistics
NA
CVE-2022-4656
The WP Visitor Statistics (Real Time Traffic) WordPress plugin prior to 6.5 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack.
Plugins-market Wp Visitor Statistics
NA
CVE-2022-33965
Multiple Unauthenticated SQL Injection (SQLi) vulnerabilities in Osamaesh WP Visitor Statistics plugin <= 5.7 at WordPress.
Plugins-market Wp Visitor Statistics
3.5
CVSSv2
CVE-2021-25042
The WP Visitor Statistics (Real Time Traffic) WordPress plugin prior to 5.5 does not have authorisation and CSRF checks in the updateIpAddress AJAX action, allowing any authenticated user to call it, or make a logged in user do it via a CSRF attack and add an arbitrary IP address...
Plugins-market Wp Visitor Statistics \\(real Time Traffic\\)
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started