Filtered by vendor Statcounter Subscriptions
Filtered by product Statcounter Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2026-57629 2 Statcounter, Wordpress 2 Statcounter, Wordpress 2026-06-29 6.5 Medium
Contributor Cross Site Scripting (XSS) in StatCounter <= 2.1.1 versions.
CVE-2021-24920 1 Statcounter 1 Statcounter 2024-11-21 4.8 Medium
The StatCounter WordPress plugin before 2.0.7 does not sanitise and escape the Project ID and Secure Code settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed