WordPress Plugin Vulnerabilities

Count Per Day <= 3.5.4 - Stored Cross-Site Scripting (XSS)

Description

The Count per Day WordPress plugin was affected by a Stored Cross-Site Scripting (XSS) security vulnerability.

Affects Plugins

Plugin icon
count-per-day
Fixed in 3.5.5

References

Exploitdb
40206
URL
https://seclists.org/fulldisclosure/2016/Aug/23
URL
https://sumofpwn.nl/advisory/2016/stored_cross_site_scripting_vulnerability_in_count_per_day_wordpress_plugin.html

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Submitter
pvdl
Verified
No
WPVDB ID
e4d39712-ea38-4fef-9bc7-66d2577d207b

Timeline

Publicly Published
2016-08-05 (about 9 years ago)
Added
2016-08-08 (about 9 years ago)
Last Updated
2019-11-01 (about 6 years ago)

Other

Published
Title
Published
2022-03-29
Title
Anti-Malware Security and Brute-Force Firewall < 4.20.96 - Reflected Cross-Site Scripting
Published
2014-08-01
Title
Your Text Manager < 0.3.0 - Cross-Site Scripting (XSS)
Published
2015-08-26
Title
SoundCloud Is Gold <= 2.3.1 - Unauthenticated Reflected Cross-Site Scripting (XSS)
Published
2025-03-02
Title
Photo Gallery by 10Web < 1.8.33 - Admin+ Stored XSS
Published
2024-04-18
Title
Forminator < 1.15.4 - Reflected Cross-Site Scripting