Cross-site Scripting Vulnerability in Kama Click Counter Plugin by Timur Kamaev
CVE-2025-58682
6.5MEDIUM
What is CVE-2025-58682?
A Cross-site Scripting (XSS) vulnerability exists in the Kama Click Counter plugin, developed by Timur Kamaev. This security flaw allows an attacker to inject malicious scripts into web pages viewed by users, which can lead to unauthorized actions and data exposure. The vulnerability impacts all versions of Kama Click Counter up to and including 4.0.4, making websites utilizing this plugin susceptible to exploitation and requiring prompt attention from webmasters to mitigate potential security risks.
Affected Version(s)
Kama Click Counter <= 4.0.4