WordPress Plugin Vulnerabilities

WP SlimStat <= 3.5.5 - Overview URI Stored XSS

Description

The Slimstat Analytics WordPress plugin was affected by an Overview URI Stored XSS security vulnerability.

Affects Plugins

Plugin icon
wp-slimstat
Fixed in 3.5.6

References

CVE
CVE-2014-100027
URL
https://web.archive.org/web/20150128113739/https://github.com/getusedtoit/wp-slimstat/issues/3

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Verified
No
WPVDB ID
940a0272-7c19-454b-91a5-84c220326dee

Timeline

Publicly Published
2017-03-07 (about 9 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2026-03-10
Title
Astra < 4.12.4 - Contributor+ Stored XSS via Post Meta
Published
2023-04-19
Title
Update Image Tag Alt Attribute <= 2.4.5 - Reflected XSS
Published
2024-10-21
Title
WPKoi Templates for Elementor < 3.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2022-11-28
Title
Wholesale Suite < 2.1.5.1 - Subscriber+ Stored Cross-Site Scripting
Published
2025-04-28
Title
Ninja Forms < 3.10.1 - Admin+ Stored XSS