VYPR

Pixelyoursite Pro

by WordPress

CVEs (2)

  • CVE-2026-7049HigMay 2, 2026
    risk 0.47cvss 7.2epss 0.01

    The PixelYourSite Pro – Your smart PIXEL (TAG) Manager plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 12.5.0.1 via the scan_video. This makes it possible for unauthenticated attackers to make web requests to arbitrary…

  • CVE-2026-1844HigFeb 13, 2026
    risk 0.47cvss 7.2epss 0.00

    The PixelYourSite PRO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'pysTrafficSource' parameter and the 'pys_landing_page' parameter in all versions up to, and including, 12.4.0.2 due to insufficient input sanitization and output escaping. This makes…