WP-Piwik
by WordPress
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-4774 | Med | 0.35 | 6.4 | 0.01 | Sep 22, 2023 | The WP-Matomo Integration (WP-Piwik) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'wp-piwik' shortcode in versions up to, and including, 1.0.28 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it… | ||
| CVE-2015-9405 | 0.00 | — | 0.01 | Sep 20, 2019 | The wp-piwik plugin before 1.0.5 for WordPress has XSS. |
- risk 0.35cvss 6.4epss 0.01
The WP-Matomo Integration (WP-Piwik) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'wp-piwik' shortcode in versions up to, and including, 1.0.28 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it…
- CVE-2015-9405Sep 20, 2019risk 0.00cvss —epss 0.01
The wp-piwik plugin before 1.0.5 for WordPress has XSS.