Vulnerabilities > Newstatpress Project

DATE CVE VULNERABILITY TITLE RISK
2022-06-24 CVE-2017-20094 Cross-site Scripting vulnerability in Newstatpress Project Newstatpress 1.2.4
A vulnerability, which was classified as problematic, has been found in NewStatPress Plugin 1.2.4.
network
low complexity
newstatpress-project CWE-79
5.4
2022-02-14 CVE-2022-0206 Unspecified vulnerability in Newstatpress Project Newstatpress
The NewStatPress WordPress plugin before 1.3.6 does not properly escape the whatX parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting issues
network
low complexity
newstatpress-project
6.1
2019-08-22 CVE-2017-18575 Cross-site Scripting vulnerability in Newstatpress Project Newstatpress
The newstatpress plugin before 1.2.5 for WordPress has multiple stored XSS issues.
network
low complexity
newstatpress-project CWE-79
6.1
2019-08-14 CVE-2015-9315 SQL Injection vulnerability in Newstatpress Project Newstatpress
The newstatpress plugin before 1.0.1 for WordPress has SQL injection.
network
low complexity
newstatpress-project CWE-89
critical
9.8
2019-08-14 CVE-2015-9314 Cross-site Scripting vulnerability in Newstatpress Project Newstatpress
The newstatpress plugin before 1.0.4 for WordPress has XSS related to the Referer header.
network
low complexity
newstatpress-project CWE-79
6.1
2019-08-14 CVE-2015-9313 SQL Injection vulnerability in Newstatpress Project Newstatpress
The newstatpress plugin before 1.0.5 for WordPress has SQL injection related to an IMG element.
network
low complexity
newstatpress-project CWE-89
critical
9.8
2019-08-14 CVE-2015-9312 Cross-site Scripting vulnerability in Newstatpress Project Newstatpress
The newstatpress plugin before 1.0.5 for WordPress has XSS related to an IMG element.
network
low complexity
newstatpress-project CWE-79
6.1
2019-08-14 CVE-2015-9311 Cross-site Scripting vulnerability in Newstatpress Project Newstatpress
The newstatpress plugin before 1.0.6 for WordPress has reflected XSS.
network
low complexity
newstatpress-project CWE-79
6.1