CVE-2026-7049
- EPSS 0.58%
- Veröffentlicht 02.05.2026 05:29:27
- Zuletzt bearbeitet 05.05.2026 19:15:59
The PixelYourSite Pro – Your smart PIXEL (TAG) Manager plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 12.5.0.1 via the scan_video. This makes it possible for unauthenticated attackers to make w...
CVE-2026-1844
- EPSS 0.28%
- Veröffentlicht 13.02.2026 21:23:04
- Zuletzt bearbeitet 15.04.2026 00:35:42
The PixelYourSite PRO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'pysTrafficSource' parameter and the 'pys_landing_page' parameter in all versions up to, and including, 12.4.0.2 due to insufficient input sanitization an...
CVE-2023-2584
- EPSS 0.52%
- Veröffentlicht 09.06.2023 06:16:09
- Zuletzt bearbeitet 08.04.2026 18:18:04
The PixelYourSite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in versions up to, and including, 9.3.6 (9.6.1 in the Pro version) due to insufficient input sanitization and output escaping. This makes it possib...