All 3 CVE vulnerabilities found in WP Online Users Stats, with AI-generated Chinese analysis, references, and POCs.
Vendor: HK
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-4964 | WP Online Users Stats <= 1.0.0 - Authenticated (Editor+) SQL Injection via table_name Parameter CWE-89 | 4.9 | Medium | 2025-06-06 |
| CVE-2025-4966 | WP Online Users Stats <= 1.0.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting via hk_dataset_results Function CWE-352 | 6.1 | Medium | 2025-06-06 |
| CVE-2025-32603 | WordPress WP Online Users Stats plugin <= 1.0.0 - SQL Injection vulnerability CWE-89 | 9.3 | Critical | 2025-04-11 |
All 3 known CVE vulnerabilities affecting WP Online Users Stats with full Chinese analysis, references, and POCs where available.