Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wp statistics vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2019-10864
The WP Statistics plugin up to and including 12.6.2 for WordPress has XSS, allowing a remote malicious user to inject arbitrary web script or HTML via the Referer header of a GET request.
Veronalabs Wp Statistics
1.9
CVSSv2
CVE-2017-2624
It was found that xorg-x11-server prior to 1.19.0 including uses memcmp() to check the received MIT cookie against a series of valid cookies. If the cookie is correct, it is allowed to attach to the Xorg session. Since most memcmp() implementations return after an invalid byte is...
X.org Xorg-server
Debian Debian Linux 7.0
1 Github repository
4.3
CVSSv2
CVE-2018-1000556
WordPress version 4.8 + contains a Cross Site Scripting (XSS) vulnerability in plugins.php or core wordpress on delete function that can result in An attacker can perform client side attacks which could be from stealing a cookie to code injection. This attack appear to be exploit...
Veronalabs Wp Statistics
4.3
CVSSv2
CVE-2017-10991
The WP Statistics plugin up to and including 12.0.9 for WordPress has XSS in the rangestart and rangeend parameters on the wps_referrers_page page.
Wp-statistics Wp Statistics
4.3
CVSSv2
CVE-2017-2147
Cross-site scripting vulnerability in WP Statistics version 12.0.4 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Wp-statistics Wp Statistics
4.3
CVSSv2
CVE-2017-2136
Cross-site scripting vulnerability in WP Statistics version 12.0.4 and previous versions allows remote malicious users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers.
Wp Statistics Wp Statistics
4.3
CVSSv2
CVE-2017-2135
Cross-site scripting vulnerability in WP Statistics version 12.0.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Wp-statistics Wp Statistics
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4