Affected Products

Vendor / product matrix with CVE counts sourced from the CPE catalog.

Export CSV

Products

1 vendor
VendorProductsCVEsKEVAvg EPSSWorst Severity
analytify
110024.5%CRITICAL

Related CVEs

10
CVE IDDescriptionSeverityCVSSKEVEPSSPublished
CVE-2025-30897Missing Authorization vulnerability in Adnan Analytify wp-analytify allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Analytify: from n/a through <= 5.5.1.MEDIUM4.322.9%Mar 27, 2025
CVE-2025-26773Missing Authorization vulnerability in Adnan Analytify wp-analytify allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Analytify: from n/a through <= 5.5.0.HIGH8.822.4%Feb 17, 2025
CVE-2022-45830Missing Authorization vulnerability in Analytify.This issue affects Analytify: from n/a through 4.2.3.CRITICAL9.829.0%Jan 2, 2025
CVE-2023-41695Missing Authorization vulnerability in Adnan Analytify wp-analytify allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Analytify: from n/a through <= 5.1.0.HIGH8.835.5%Dec 13, 2024
CVE-2024-53814Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Adnan Analytify wp-analytify.This issue affects Analytify: from n/a through <= 5.4.3.MEDIUM6.535.1%Dec 9, 2024
CVE-2023-47841Missing Authorization vulnerability in Analytify Analytify allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Analytify: from n/a through 5.1.1.MEDIUM4.327.4%Dec 9, 2024
CVE-2024-43265Cross-Site Request Forgery (CSRF) vulnerability in Analytify.This issue affects Analytify: from n/a through 5.3.1.LOW3.56.3%Aug 26, 2024
CVE-2024-35689Cross-Site Request Forgery (CSRF) vulnerability in Analytify.This issue affects Analytify: from n/a through 5.2.3.HIGH8.810.2%Jun 8, 2024
CVE-2024-1809The Analytify – Google Analytics Dashboard For WordPress (GA4 analytics made easy) plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on AJAX functions in combination with nonce leakage in all versions up to, and including, 5.2.3. This makes it possible for authenticated attackers, with subscriber access and higher, to obtain certain sensitive information related to plugin settings.MEDIUM5.421.0%May 2, 2024
CVE-2024-1584The Analytify – Google Analytics Dashboard For WordPress (GA4 analytics made easy) plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wpa_check_authentication' function in all versions up to, and including, 5.2.1. This makes it possible for unauthenticated attackers to modify the site's Google Analytics tracking ID.MEDIUM5.334.8%May 2, 2024