Lucene search

K

Post Views Counter Security Vulnerabilities

cve
cve

CVE-2021-24613

The Post Views Counter WordPress plugin before 1.3.5 does not sanitise or escape its Post Views Label settings, which could allow high privilege users to perform Cross-Site Scripting attacks in the frontend even when the unfiltered_html capability is disallowed

4.8CVSS

4.8AI Score

0.001EPSS

2021-09-20 10:15 AM
30
cve
cve

CVE-2024-31264

Unauthenticated Cross Site Request Forgery (CSRF) in Post Views Counter <= 1.4.4 versions.

4.3CVSS

9.5AI Score

0.0004EPSS

2024-04-12 01:15 PM
26