WP Statistics, CVE-2026-48839
- CVE, Research URL
- Home page URL
- Application
- Published on
- Jun 01, 2026
- Research Description
- Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in VeronaLabs WP Statistics allows DOM-Based XSS. This issue affects WP Statistics: from n/a through 14.16.6.
- Affected versions
-
max 14.16.7.
- Status
-
vulnerable
| Previous vulnerability researches |
|---|
| Content Hubs (CVE-2023-33999) , Jun 14, 2026 |
| Content Hubs (53f96ec1dcf4c7ecc304249556cf2b202e4edd3c) , Jun 06, 2024 |