Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
plugins-market wp visitor statistics vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-0600
The WP Visitor Statistics (Real Time Traffic) WordPress plugin prior to 6.9 does not escape user input which is concatenated to an SQL query, allowing unauthenticated visitors to conduct SQL Injection attacks.
Plugins-market Wp Visitor Statistics
NA
CVE-2022-4656
The WP Visitor Statistics (Real Time Traffic) WordPress plugin prior to 6.5 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack.
Plugins-market Wp Visitor Statistics
NA
CVE-2022-33965
Multiple Unauthenticated SQL Injection (SQLi) vulnerabilities in Osamaesh WP Visitor Statistics plugin <= 5.7 at WordPress.
Plugins-market Wp Visitor Statistics
3.5
CVSSv2
CVE-2021-25042
The WP Visitor Statistics (Real Time Traffic) WordPress plugin prior to 5.5 does not have authorisation and CSRF checks in the updateIpAddress AJAX action, allowing any authenticated user to call it, or make a logged in user do it via a CSRF attack and add an arbitrary IP address...
Plugins-market Wp Visitor Statistics \\(real Time Traffic\\)
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started