WP Statistics
VeronaLabs
Developer
14.16.4
Latest version
600,000
Installations
No date
Last updated
Vulnerability history
0 present
28 patched
12 Mitigation rules
- Unauthenticated Stored Cross-Site Scripting via User-Agent Header vulnerability<= 14.15.427/09/2025
- Broken Access Control Vulnerability<= 14.1514/08/2025
- Missing Authorization to Authenticated (Subscriber+) Arbitrary plugin Settings Update vulnerability<= 14.13.329/04/2025
- Unauthenticated Stored Cross-Site Scripting vulnerability<= 14.512/03/2024
- Admin+ SQL Injection vulnerability< 14.028/03/2023
- Multiple Authenticated SQL Injection vulnerabilities<= 13.2.1031/01/2023
- Authenticated SQLi vulnerability< 13.2.927/12/2022
- Authenticated Stored Cross-Site Scripting (XSS) vulnerability<= 13.2.124/05/2022
- Reflected Cross-Site Scripting (XSS) vulnerability<= 13.2.110/05/2022
- Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability<= 13.1.517/02/2022
- Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability<= 13.1.517/02/2022
- Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability<= 13.1.517/02/2022
- Unauthenticated Blind SQL Injection (SQLi) vulnerability<= 13.1.516/02/2022
- Unauthenticated Blind SQL Injection (SQLi) vulnerability<= 13.1.516/02/2022
- Unauthenticated Blind SQL Injection (SQLi) via IP vulnerability<= 13.1.516/02/2022
- Unauthenticated SQL Injection vulnerability<= 13.1.410/02/2022
- Unauthenticated Time-Based Blind SQL Injection (SQLi) vulnerability<= 13.0.718/05/2021
- Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability<= 12.6.6.104/07/2019
- Authenticated Stored Cross-Site Scripting (XSS) vulnerability<= 12.6.512/06/2019
- Cross-Site Scripting (XSS) vulnerability<= 12.6.324/04/2019
- Authenticated SQL Injection vulnerability<= 12.0.701/07/2017
- Reflected Cross-Site Scripting (XSS) vulnerability<= 12.0.528/04/2017
- SQL Injection<= 9.422/11/2015
- Cross Site Scripting<= 9.5.110/08/2015
- Cross Site Scripting<= 2.2.425/06/2015
- Stored & Reflected XSS<= 8.315/05/2015
- Stored XSS<= 8.415/05/2015
- Stored Cross Site Scripting<= 9.1.215/05/2015