Vulnerabilities > Castos > Seriously Simple Stats > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-24 | CVE-2024-8738 | Cross-site Scripting vulnerability in Castos Seriously Simple Stats The Seriously Simple Stats plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.6.0. | 6.1 |
| 2023-10-17 | CVE-2023-45005 | Unspecified vulnerability in Castos Seriously Simple Stats Unauth. | 6.1 |