cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-12072,https://securityvulnerability.io/vulnerability/CVE-2024-12072,Arbitrary Script Execution Vulnerability in Google Analytics Made Easy Plugin,"The Analytics Cat plugin for WordPress, which facilitates easy integration with Google Analytics, is affected by a reflected cross-site scripting vulnerability. This security flaw arises from improper handling of URL parameters via the add_query_arg function without adequate escaping. As a result, an attacker can craft a specially designed link that tricks users into executing arbitrary scripts. Exploitation requires no authentication, allowing attackers to potentially manipulate user interactions and gain access to sensitive data or perform unwanted actions. It is critical for users of this plugin to apply any available security patches and remain vigilant against phishing attempts that could exploit this vulnerability.",Wordpress,Analytics Cat – Google Analytics Made Easy,6.1,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,2024-12-12T05:24:20.868Z,0
CVE-2022-40311,https://securityvulnerability.io/vulnerability/CVE-2022-40311,WordPress Analytics Cat plugin <= 1.0.9 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability,Auth. (admin+) Stored Cross-Site Scripting (XSS) in Fatcat Apps Analytics Cat plugin <= 1.0.9 on WordPress.,Wordpress,Analytics Cat – Google Analytics Made Easy (WordPress Plugin),4.8,MEDIUM,0.0005000000237487257,false,,false,false,false,,false,false,2022-10-21T16:15:00.000Z,0