Skip to main content

Burst Statistics

3 CVEs product

Monthly

CVE-2024-1894 MEDIUM PATCH This Month

The Burst Statistics - Privacy-Friendly Analytics for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'burst_total_pageviews_count' custom meta field in all. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS WordPress Burst Statistics
NVD VulDB
CVSS 3.1
6.4
EPSS
0.2%
CVE-2024-0405 HIGH PATCH This Week

The Burst Statistics - Privacy-Friendly Analytics for WordPress plugin, version 1.5.3, is vulnerable to Post-Authenticated SQL Injection via multiple JSON parameters in the. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity.

SQLi WordPress Authentication Bypass Burst Statistics
NVD VulDB
CVSS 3.1
7.2
EPSS
0.2%
CVE-2023-5761 HIGH PATCH This Week

The Burst Statistics - Privacy-Friendly Analytics for WordPress plugin for WordPress is vulnerable to SQL Injection via the 'url' parameter in versions 1.4.0 to 1.4.6.1 (free) and versions 1.4.0 to. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

WordPress SQLi Burst Statistics
NVD
CVSS 3.1
7.5
EPSS
0.7%
EPSS 0% CVSS 6.4
MEDIUM PATCH This Month

The Burst Statistics - Privacy-Friendly Analytics for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'burst_total_pageviews_count' custom meta field in all. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS WordPress Burst Statistics
NVD VulDB
EPSS 0% CVSS 7.2
HIGH PATCH This Week

The Burst Statistics - Privacy-Friendly Analytics for WordPress plugin, version 1.5.3, is vulnerable to Post-Authenticated SQL Injection via multiple JSON parameters in the. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity.

SQLi WordPress Authentication Bypass +1
NVD VulDB
EPSS 1% CVSS 7.5
HIGH PATCH This Week

The Burst Statistics - Privacy-Friendly Analytics for WordPress plugin for WordPress is vulnerable to SQL Injection via the 'url' parameter in versions 1.4.0 to 1.4.6.1 (free) and versions 1.4.0 to. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

WordPress SQLi Burst Statistics
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy