WP Visitor Statistics (Real Time Traffic)

Wordfence Intelligence   >   Vulnerability Database   >   WordPress Plugins   >   WP Visitor Statistics (Real Time Traffic)

Information

Software Type Plugin
Software Slug wp-stats-manager (view on wordpress.org)
Software Status Active
Software Author osamaesh
Software Website plugins-market.com
Software Downloads 566,910
Software Active Installs 20,000
Software Record Last Updated October 4, 2023

6 vulnerabilities

WP Visitor Statistics (Real Time Traffic) <= 6.8.1 - Unauthenticated SQL Injection
9.8
CVE-2023-0600
Apr 24, 2023
Researcher: Trần Quốc Trường An
WP Visitor Statistics (Real Time Traffic) <= 5.7 - Unauthenticated SQL Injection
9.8
CVE-2022-33965
Jul 6, 2022
Researcher: Rafie Muhammad
WP Visitor Statistics (Real Time Traffic) <= 5.5 - SQL Injection
8.8
CVE-2022-0410
Feb 14, 2022
Researcher: Krzysztof Zając
WP Visitor Statistics (Real Time Traffic) <= 4.7 - SQL Injection
8.8
CVE-2021-24750
Dec 22, 2021
Researcher: Ron Jost (Hacker5preme)
WP Visitor Statistics (Real Time Traffic) <= 6.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
6.4
CVE-2022-4656
Jan 17, 2023
Researcher: Lana Codes
WP Visitor Statistics (Real Time Traffic) <= 5.4 - Missing Authorization to Stored Cross-Site Scripting
5.4
CVE-2021-25042
Jan 31, 2022
Researcher: Krzysztof Zając
Title CVE ID CVSS Researchers Date
WP Visitor Statistics (Real Time Traffic) <= 6.8.1 - Unauthenticated SQL Injection CVE-2023-0600 9.8 Trần Quốc Trường An April 24, 2023
WP Visitor Statistics (Real Time Traffic) <= 5.7 - Unauthenticated SQL Injection CVE-2022-33965 9.8 Rafie Muhammad July 6, 2022
WP Visitor Statistics (Real Time Traffic) <= 5.5 - SQL Injection CVE-2022-0410 8.8 Krzysztof Zając February 14, 2022
WP Visitor Statistics (Real Time Traffic) <= 4.7 - SQL Injection CVE-2021-24750 8.8 Ron Jost (Hacker5preme) December 22, 2021
WP Visitor Statistics (Real Time Traffic) <= 6.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode CVE-2022-4656 6.4 Lana Codes January 17, 2023
WP Visitor Statistics (Real Time Traffic) <= 5.4 - Missing Authorization to Stored Cross-Site Scripting CVE-2021-25042 5.4 Krzysztof Zając January 31, 2022

All the threat data shared in this database is powered by Wordfence Intelligence Enterprise.
Interested in integrating this data into your platform or network?
Contact us now to discuss API access to our Wordfence Intelligence Enterprise Data Feeds.

Inquire Now

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation