WordPress WP Statistics plugin <= 12.6.5 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
- WP Statistics
- Authenticated Stored Cross-Site Scripting (XSS) vulnerability found by kuqadk3 in WordPress WP Statistics plugin (versions <= 12.6.5).
- Update the WordPress WP Statistics plugin to the latest available version (at least 126.96.36.199).
Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
- Name CVE-2019-12566
Fixed In 188.8.131.52
- Disclosure date