Vulnerabilities > Fatcatapps > Pixel CAT > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-09-24 CVE-2024-8544 Cross-site Scripting vulnerability in Fatcatapps Pixel CAT
The Pixel Cat – Conversion Pixel Manager plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 3.0.5.
network
low complexity
fatcatapps CWE-79
6.1
2021-12-13 CVE-2021-24972 Unspecified vulnerability in Fatcatapps Pixel CAT
The Pixel Cat WordPress plugin before 2.6.3 does not escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html is disallowed
network
low complexity
fatcatapps
4.8