CVE-2015-9273

NONE EPSS 67.5%
Published Oct 7, 20187y ago · Modified Jun 17, 20262w ago
Find Similar
Published Oct 7, 2018 7y ago
Last Modified Jun 17, 2026 2w ago

Description

The wp-slimstat (aka Slimstat Analytics) plugin before 4.1.6.1 for WordPress has XSS via an HTTP Referer header, or via a field associated with JavaScript-based Referer tracking.

Threat Intelligence

EPSS Exploit Probability
67.5% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-79 Cross-site Scripting Injection

Affected Products 1

VendorProductVersionRange
wp-slimstatslimstat_analytics* <4.1.6.1

References 3

  • plugins.svn.wordpress.org http://plugins.svn.wordpress.org//wp-slimstat/tags/4.1.6.1/readme.txt
    Release NotesThird Party Advisory
  • plugins.trac.wordpress.org https://plugins.trac.wordpress.org/changeset/1204104
    Release NotesThird Party Advisory
  • openwall.com https://www.openwall.com/lists/oss-security/2015/07/30/1
    Mailing ListThird Party Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.