Slimstat Analytics

Information

Software Type Plugin
Software Slug wp-slimstat (view on wordpress.org)
Software Status Active
Software Author coolmann
Software Website wp-slimstat.com
Software Downloads 5,750,064
Software Active Installs 100,000
Software Record Last Updated May 30, 2023

12 vulnerabilities

Title CVE ID CVSS Researchers Date
Slimstat Analytics <= 5.0.4 - Authenticated (Administrator+) SQL Injection CVE-2022-45373 7.2 Rafie Muhammad May 11, 2023
Slimstat Analytics <= 5.0.4 - Reflected Cross-Site Scripting CVE-2022-45366 6.1 Rafie Muhammad May 11, 2023
Slimstat Analytics <= 4.9.3.3 - Authenticated (Subscriber+) SQL Injection via Shortcode 8.8 March 30, 2023
Slimstat Analytics <= 4.9.3.2 - Authenticated (Subscriber+) SQL Injection via Shortcode CVE-2023-0630 8.8 Marc-Alexandre Montpas February 23, 2023
Slimstat Analytics <= 4.9.2 - Unauthenticated Stored Cross-Site Scripting CVE-2022-4310 7.2 Bilal Chawich December 19, 2022
Slimstat Analytics <= 4.9.2 - Reflected Cross-Site Scripting via REQUEST_URI 6.1 December 12, 2022
Slimstat Analytics <= 4.8.3 - Cross-Site Request Forgery to Stored Cross-Site Scripting 8.8 May 22, 2019
WP Slimstat <= 4.8 - Unauthenticated Stored Cross-Site Scripting from Visitors CVE-2019-15112 6.1 Antony Garand May 21, 2019
Slimstat Analytics < 4.1.6.1 - Cross-Site Scripting CVE-2015-9273 6.1 Sam Pizzey July 22, 2015
Slimstat Analytics < 3.9.6 - Unauthenticated Blind SQL Injection 8.2 Marc-Alexandre Montpas February 24, 2015
Slimstat Analytics <= 3.5.5 - Stored Cross-Site Scripting CVE-2014-100027 6.1 lnxg33k January 13, 2015
Slimstat Analytics <= 3.9.2 - Cross-Site Scripting CVE-2015-1204 6.1 LOUDIYI MOHAMED January 6, 2015

All the threat data shared in this database is powered by Wordfence Intelligence Enterprise.
Interested in integrating this data into your platform or network?
Contact us now to discuss API access to our Wordfence Intelligence Enterprise Data Feeds.

Inquire Now

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation