Plugins-market

Wp Visitor Statistics

4 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2024-24867

  • EPSS 0.28%
  • Veröffentlicht 17.03.2024 16:15:08
  • Zuletzt bearbeitet 20.02.2025 12:44:20

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Osamaesh WP Visitor Statistics (Real Time Traffic).This issue affects WP Visitor Statistics (Real Time Traffic): from n/a through 6.9.4.

9.8

CVE-2023-0600

Exploit
  • EPSS 77.4%
  • Veröffentlicht 15.05.2023 13:15:09
  • Zuletzt bearbeitet 24.01.2025 21:15:08

The WP Visitor Statistics (Real Time Traffic) WordPress plugin before 6.9 does not escape user input which is concatenated to an SQL query, allowing unauthenticated visitors to conduct SQL Injection attacks.

5.4

CVE-2022-4656

Exploit
  • EPSS 0.2%
  • Veröffentlicht 13.02.2023 15:15:18
  • Zuletzt bearbeitet 20.03.2025 19:15:17

The WP Visitor Statistics (Real Time Traffic) WordPress plugin before 6.5 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack.

9.8

CVE-2022-33965

  • EPSS 39.97%
  • Veröffentlicht 25.07.2022 15:15:09
  • Zuletzt bearbeitet 21.11.2024 07:08:41

Multiple Unauthenticated SQL Injection (SQLi) vulnerabilities in Osamaesh WP Visitor Statistics plugin <= 5.7 at WordPress.