The WassUp Real Time Analytics plugin for WordPress has a security flaw which allows malicious actors to insert malicious web scripts into web pages. These scripts can then be triggered when a user visits the page. The vulnerability affects all versions up to and including 1.9.4.4 due to lack of proper input and output protection.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
