CVE-2022-27231

Summary

Cross-site scripting vulnerability exists in WP Statistics versions prior to 13.2.0 because it improperly processes a platform parameter. By exploiting this vulnerability, an arbitrary script may be executed on the web browser of the user who is logging in to the website using the product.

Affected Software

VendorProductVersion RangeStatus
VeronaLabsWP Statisticsversions prior to 13.2.0affected

Weaknesses

  • Cross-site scripting

ADP Enrichment

CVE Program Container

Additional References

References