Cross-Site Scripting Vulnerability in Count Per Day Plugin for WordPress
CVE-2012-6714

6.1MEDIUM

Key Information:

Vendor

Wordpress

Vendor
CVE Published:
21 August 2019

What is CVE-2012-6714?

The Count Per Day plugin for WordPress is susceptible to a Cross-Site Scripting (XSS) vulnerability due to improper handling of search terms. This can allow an attacker to inject malicious scripts into the affected web application, which may be executed in the context of the user's browser session, potentially leading to data theft or defacement.

References

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
The Cyber Security Vulnerability Database.