| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-22361 | WordPress Opentracker Analytics Plugin <= 1.3 - Reflected Cross Site Scripting (XSS) vulnerability | Opentracker | Opentracker Analytics | High | 7.1 | 2025-01-09 15:39:30 | Deep Dive |
| CVE-2025-22515 | WordPress Show Google Analytics widget plugin <= 1.5.4 - Cross Site Scripting (XSS) vulnerability | Simon | Show Google Analytics widget | Medium | 6.5 | 2025-01-07 14:57:36 | Deep Dive |
| CVE-2024-51700 | WordPress NAVER Analytics plugin <= 0.9 - CSRF to Stored XSS vulnerability | eutrue | NAVER Analytics | High | 7.1 | 2025-01-07 10:49:30 | Deep Dive |
| CVE-2024-11934 | Formaloo Form Maker & Customer Analytics for WordPress & WooCommerce <= 2.1.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | formaloo | Formaloo Form Maker & Customer Analytics for WordPress & WooCommerce | Medium | 6.4 | 2025-01-07 03:21:55 | Deep Dive |
| CVE-2024-38766 | WordPress Matomo Analytics plugin <= 5.1.1 - Cross Site Request Forgery (CSRF) leading to Notice Dismissal vulnerability | matomoteam | Matomo Analytics | Medium | 4.3 | 2025-01-02 12:01:08 | Deep Dive |
| CVE-2024-40695 | IBM Cognos Analytics file upload | IBM | Cognos Analytics | High | 8.0 | 2024-12-20 13:41:00 | Deep Dive |
| CVE-2024-51466 | IBM Cognos Analytics expression language injection | IBM | Cognos Analytics | Critical | 9.0 | 2024-12-20 13:38:56 | Deep Dive |
| CVE-2021-39081 | IBM Cognos Analytics Mobile information disclosure | IBM | Cognos Analytics Mobile for Android | Medium | 5.9 | 2024-12-19 00:22:15 | Deep Dive |
| CVE-2024-25042 | IBM Cognos Analytics cross-site scripting | IBM | Cognos Analytics | Medium | 5.4 | 2024-12-18 16:20:06 | Deep Dive |
| CVE-2024-45082 | IBM Cognos Analytics HTTP open redirection | IBM | Cognos Analytics | Medium | 6.8 | 2024-12-18 16:15:13 | Deep Dive |
| CVE-2024-41752 | IBM Cognos Analytics HTML injection | IBM | Cognos Analytics | Medium | 5.4 | 2024-12-18 16:07:14 | Deep Dive |
| CVE-2024-10205 | Authorization bypass vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer | Hitachi | Hitachi Ops Center Analyzer | Critical | 9.4 | 2024-12-17 01:16:19 | Deep Dive |
| CVE-2023-33994 | WordPress Slimstat Analytics plugin <= 5.0.5.1 - Broken Access Control vulnerability | VeronaLabs | Slimstat Analytics | 中危 | - | 2024-12-13 14:23:31 | Deep Dive |
| CVE-2024-12072 | Analytics Cat – Google Analytics Made Easy <= 1.1.2 - Reflected Cross-Site Scripting | fatcatapps | Analytics Cat – Google Analytics Made Easy | Medium | 6.1 | 2024-12-12 05:24:21 | Deep Dive |
| CVE-2023-23887 | WordPress Easy Google Analytics for WordPress plugin <= 1.6.0 - Broken Access Control vulnerability | Shahjada | Easy Google Analytics for WordPress | Medium | 5.3 | 2024-12-09 11:31:46 | Deep Dive |
| CVE-2024-52323 | Sensitive Data Exposure | ManageEngine | Analytics Plus | High | 8.1 | 2024-11-27 09:54:08 | Deep Dive |
| CVE-2024-51824 | WordPress Advanced Video Player with Analytics plugin <= 1 - Cross Site Scripting (XSS) vulnerability | Karam Singh | Advanced Video Player with Analytics | Medium | 6.5 | 2024-11-19 16:31:48 | Deep Dive |
| CVE-2024-51937 | WordPress IA Map Analytics Basic plugin <= 20170413 - Cross Site Scripting (XSS) vulnerability | bnisia | IA Map Analytics Basic | Medium | 6.5 | 2024-11-19 16:30:49 | Deep Dive |
| CVE-2022-20663 | Secure Network Analytics Cross-Site Scripting Vulnerability | Cisco | Cisco Secure Network Analytics | Medium | 6.1 | 2024-11-15 15:38:24 | Deep Dive |
| CVE-2024-43229 | WordPress WP Search Analytics plugin <= 1.4.9 - Broken Access Control vulnerability | Cornel Raiu | WP Search Analytics | Medium | 4.3 | 2024-11-01 14:17:37 | Deep Dive |