WordPress Plugin Vulnerabilities

P3 (Plugin Performance Profiler) <= 1.5.3.8 - Cross-Site Scripting (XSS)

Description

The P3 (Plugin Performance Profiler) WordPress plugin was affected by a Cross-Site Scripting (XSS) security vulnerability.

Affects Plugins

Plugin icon
p3-profiler
Fixed in 1.5.3.9

References

URL
https://blog.sucuri.net/2015/04/security-advisory-xss-vulnerability-affecting-multiple-wordpress-plugins.html

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Submitter
ethicalhack3r
Submitter twitter
ethicalhack3r
Verified
No
WPVDB ID
3f96d6f2-45d5-4a00-a9b5-656360d0d560

Timeline

Publicly Published
2015-04-20 (about 9 years ago)
Added
2015-04-20 (about 9 years ago)
Last Updated
2019-10-21 (about 4 years ago)

Other

Published
Title
Published
2023-07-13
Title
Buy Me a Coffee < 3.7 - Subscriber+ Stored Cross-Site Scripting
Published
2021-07-19
Title
Photo Gallery < 1.5.79 - Stored XSS via Uploaded SVG in Zip
Published
2020-12-24
Title
WP Postratings < 1.86.1 - Admin+ Stored Cross-Site Scripting
Published
2024-03-15
Title
HT Easy GA4 ( Google Analytics 4 ) < 1.1.8 - Reflected Cross-Site Scripting
Published
2024-03-25
Title
Astra < 4.6.9 - Contributor+ Stored XSS