Vulnerabilities > WP Visitor Statistics Project

DATE CVE VULNERABILITY TITLE RISK
2022-03-07 CVE-2022-0410 SQL Injection vulnerability in WP Visitor Statistics Project WP Visitor Statistics
The WP Visitor Statistics (Real Time Traffic) WordPress plugin before 5.6 does not sanitise and escape the id parameter before using it in a SQL statement via the refUrlDetails AJAX action, available to any authenticated user, leading to a SQL injection
network
low complexity
wp-visitor-statistics-project CWE-89
6.5