WordPress Plugin Vulnerabilities

Count Per Day <= 3.2.3 - notes.php note Parameter XSS

Description

The Count per Day WordPress plugin was affected by a notes.php note Parameter XSS security vulnerability.

Affects Plugins

Plugin icon
count-per-day
Fixed in 3.2.3

References

CVE
CVE-2012-6714
Exploitdb
20862
URL
https://packetstormsecurity.com/files/#115904/

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.1 (medium)

Miscellaneous

Verified
No
WPVDB ID
ff627ead-073d-4c5a-879c-c7ed74950329

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2023-04-28
Title
WP Search Analytics < 1.4.6 - Admin+ Stored XSS
Published
2025-11-10
Title
Skip to Timestamp <= 1.4.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
Published
2025-10-29
Title
Easy Invoice < 2.1.0 - Unauthenticated Stored Cross-Site Scripting
Published
2025-01-16
Title
DsgnWrks Twitter Importer <= 1.1.4 - Reflected Cross-Site Scripting
Published
2019-09-27
Title
Zoner < 4.2 - Persistent XSS & IDOR