Cross-Site Scripting Vulnerability in WP SlimStat Plugin for WordPress
CVE-2014-100027

Currently unrated

Key Information:

Vendor: Wordpress
Status: WP Slimstat
Vendor: CVE Published:; 13 January 2015

Summary

The WP SlimStat plugin for WordPress contains a vulnerability that enables remote attackers to exploit a Cross-Site Scripting (XSS) flaw. By crafting a malicious URL, an attacker could inject arbitrary web scripts or HTML code, which may compromise the security of affected WordPress sites. Addressing this vulnerability is critical to enhancing the overall security posture of your website and protecting user data from unauthorized access.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/91840

vdb-entryx_refsource_XF

https://github.com/getusedtoit/wp-slimstat/issues/3

x_refsource_CONFIRM

http://secunia.com/advisories/57305

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Jan 13, 2015
Vulnerability Reserved
Jan 13, 2015