WordPress Plugin WP Statistics: Unauthenticated Stored XSS Under Certain Configurations

The WordPress plugin WP Statistics, which has an active installation base of 500k users, has an unauthenticated stored XSS vulnerability on versions prior to 12.6.7 . This vulnerability can only be exploited under certain configurations—the default settings are not vulnerable.

Source: WordPress Plugin WP Statistics: Unauthenticated Stored XSS Under Certain Configurations

LONZO, Austria – WordPress Services and Hosting
 
info@lonzo.eu / 0800 80 08 80 566 (Austria) / +49 8654 60 85 66 (Europe)

Partners Security Contact System Status

© 2017-2019 LONZO – All rights reserved. Terms of use Privacy policy