Osamaesh Wp Visitor Statistics vulnerabilities
3 known vulnerabilities affecting osamaesh/wp_visitor_statistics.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2022-33965P2CRITICALCVSS 9.8PoC≤ 5.72022-07-25
CVE-2022-33965 [CRITICAL] CWE-89 CVE-2022-33965: Multiple Unauthenticated SQL Injection (SQLi) vulnerabilities in Osamaesh WP Visitor Statistics plug
Multiple Unauthenticated SQL Injection (SQLi) vulnerabilities in Osamaesh WP Visitor Statistics plugin <= 5.7 at WordPress.
nvd
CVE-2024-24867P3HIGHCVSS 7.5≥ n/a, ≤ 6.9.42024-03-17
CVE-2024-24867 [HIGH] CWE-200 CVE-2024-24867: Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Osamaesh WP Visitor Stat
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Osamaesh WP Visitor Statistics (Real Time Traffic).This issue affects WP Visitor Statistics (Real Time Traffic): from n/a through 6.9.4.
nvd
CVE-2026-4303P4MEDIUMCVSS 6.4≤ 8.42026-04-08
CVE-2026-4303 [MEDIUM] CWE-79 CVE-2026-4303: The WP Visitor Statistics (Real Time Traffic) plugin for WordPress is vulnerable to Stored Cross-Sit
The WP Visitor Statistics (Real Time Traffic) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wsm_showDayStatsGraph' shortcode in all versions up to, and including, 8.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with cont
nvd