WordPress Plugin Vulnerabilities

Count Per Day <= 3.1 - map.php map Parameter XSS

Description

The Count per Day WordPress plugin was affected by a map.php map Parameter XSS security vulnerability.

Affects Plugins

Plugin icon
count-per-day
Fixed in 3.1.1

References

Exploitdb
18355
URL
https://packetstormsecurity.com/files/#108631/
URL
https://exchange.xforce.ibmcloud.com/vulnerabilities/72385

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Verified
No
WPVDB ID
3f9a527e-1c34-46cd-bc5a-786f64c14a6e

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2025-07-09
Title
Lana Downloads Manager < 1.11.0 - Authenticated (Administrator+) Stored Cross-Site Scripting
Published
2023-11-21
Title
Perfmatters < 2.1.7 - Reflected Cross-Site Scripting
Published
2025-06-09
Title
Premium Addons for Elementor < 4.11.9 - Contributor+ Stored XSS via Countdown Widget
Published
2025-02-23
Title
Zigaform – Price Calculator & Cost Estimation Form Builder Lite < 7.4.3 - Unauthenticated Stored Cross-Site Scripting
Published
2022-09-05
Title
WP Popup Builder < 1.2.9 - Reflected Cross-Site Scripting