Sumo Google Analyticator — known CVE vulnerabilities
Every CVE whose affected-product data names Sumo Google Analyticator, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2015-4697 — CVSS 8.8 (high): Cross-site request forgery (CSRF) vulnerability in Google Analyticator Wordpress Plugin before 6.4.9.3 rev @1183563.
CVE-2022-3425 — CVSS 7.2 (high): The Analyticator WordPress plugin before 6.5.6 unserializes user input provided via the settings, which could allow high-privilege users…
CVE-2022-4323 — CVSS 7.2 (high): The Analyticator WordPress plugin before 6.5.6 unserializes user input provided via the settings, which could allow high privilege users…
CVE-2009-5158 — CVSS 6.1 (medium): The google-analyticator plugin before 5.2.1 for WordPress has insufficient HTML sanitization for Google Analytics API text.