WP Statistics

Friendly Analytics Plugin plugin <= 14.13.3 Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Settings Update vulnerability <= 14.13.3

5.4

29 April, 2025

Unauthenticated Stored CrossSite Scripting vulnerability <= 14.5

7.1

12 March, 2024

Admin+ SQL Injection vulnerability < 14.0

7.6

28 March, 2023

Multiple Authenticated SQL Injection vulnerabilities <= 13.2.10

9.9

31 January, 2023

Authenticated SQLi vulnerability < 13.2.9

6.7

27 December, 2022