Security Advisory

CVE-2022-4310

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-01-09 22:13:26

Last updated 2025-04-09 19:23:59

Assigner WPScan

State PUBLISHED

Description

The Slimstat Analytics WordPress plugin before 4.9.3 does not sanitise and escape the URI when logging requests, which could allow unauthenticated attackers to perform Stored Cross-Site Scripting attacks against logged in admin viewing the logs

← Browse all CVEs View on cve.org ↗