Data443 ≫ Tracking Code Manager

3 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

4.8

CVE-2024-6335

Exploit

EPSS 0.05%
Veröffentlicht 15.05.2025 20:15:54
Zuletzt bearbeitet 11.06.2025 15:46:57

The Tracking Code Manager WordPress plugin before 2.3.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is...

5.9

CVE-2024-10309

Exploit

EPSS 0.08%
Veröffentlicht 30.01.2025 06:15:28
Zuletzt bearbeitet 11.05.2025 23:38:49

The Tracking Code Manager WordPress plugin before 2.4.0 does not sanitise and escape some of its metabox settings when outputing them in the page, which could allow users with a role as low as Contributor to perform Cross-Site Scripting attacks.

6.4

CVE-2024-8721

EPSS 0.15%
Veröffentlicht 24.12.2024 10:15:06
Zuletzt bearbeitet 24.12.2024 10:15:06

The Tracking Code Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the tracking code field in all versions up to, and including, 2.3.0 due to insufficient input sanitization and output escaping. This makes it possible for...

Team-orientierte Vulnerability Management Plattform

Features der Plattform

Data443 ≫ Tracking Code Manager

CVE-2024-6335

CVE-2024-10309

CVE-2024-8721