Vulnerabilities > Hotjar

DATE CVE VULNERABILITY TITLE RISK
2023-10-14 CVE-2023-1259 Cross-site Scripting vulnerability in Hotjar
The Hotjar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the hotjar_site_id in versions up to, and including, 1.0.15 due to insufficient input sanitization and output escaping.
network
low complexity
hotjar CWE-79
5.5