Newstatpress Project Newstatpress — known CVE vulnerabilities
Every CVE whose affected-product data names Newstatpress Project Newstatpress, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2015-4062 — CVSS 6.5 (medium): SQL injection vulnerability in includes/nsp_search.php in the NewStatPress plugin before 0.9.9 for WordPress allows remote authenticated…
CVE-2022-0206 — CVSS 6.1 (medium): The NewStatPress WordPress plugin before 1.3.6 does not properly escape the whatX parameters before outputting them back in attributes…
CVE-2017-20094 — CVSS 3.5 (low): A vulnerability, which was classified as problematic, has been found in NewStatPress Plugin 1.2.4. This issue affects some unknown…
CVE-2015-4063 — CVSS 3.5 (low): Cross-site scripting (XSS) vulnerability in includes/nsp_search.php in the NewStatPress plugin before 0.9.9 for WordPress allows remote…