cleantalk
Vulnerabilities and Security Researches

SlimStat Analytics, ae04c4ec787c5775fb1546302cddddfc9c53365d

CVE, Research URL

ae04c4ec787c5775fb1546302cddddfc9c53365d

Home page URL

Security reports for SlimStat Analytics

Application

SlimStat Analytics

Published on
-
Research Description
SlimStat Analytics [wp-slimstat] < 5.1.4 WordPress Slimstat Analytics Plugin <= 5.1.3 is vulnerable to Cross Site Scripting (XSS) Update the WordPress Slimstat Analytics plugin to the latest available version (at least 5.1.4). Lucio Sá discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Slimstat Analytics Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 5.1.4. Have additional information or questions about this entry? Get in touch.
Affected versions
max 5.1.4.
Status
vulnerable
Previous vulnerability researches
SlimStat Analytics (CVE-2025-14151) , Jan 27, 2026
SlimStat Analytics (CVE-2026-7634) , May 28, 2026
SlimStat Analytics (1528b3cc3937a9c81cc4137bbfaec62f4b90c0a7) , Jun 16, 2026
SlimStat Analytics (4fbce60766f41ab69ebf656812aed786c85670f7) , Jun 16, 2026
SlimStat Analytics (b5e70d40a63186346fbc7932d21b5656229b5f12) , Jun 16, 2026
New vulnerability
Form Maker by 10Web &#8211; Mobile-Friendly Drag &amp; Drop Contact Form Builder (CVE-2026-11777) , Jun 19, 2026
Form Maker by 10Web &#8211; Mobile-Friendly Drag &amp; Drop Contact Form Builder (CVE-2026-11776) , Jun 19, 2026
LearnPress &#8211; WordPress LMS Plugin (CVE-2026-8383) , Jun 19, 2026
WP Travel Gutenberg Blocks (CVE-2026-54808) , Jun 19, 2026
BetterDocs – Best Documentation, FAQ &amp; Knowledge Base Plugin with AI Support (CVE-2026-12157) , Jun 19, 2026