Google Analytics by Yoast <= 5.4.4 - Authenticated Stored Cross-Site Scripting (XSS)

Affects Plugin

Google Analytics Dashboard Plugin for WordPress by MonsterInsights

fixed in version 5.4.5

References

URL	https://security.dxw.com/advisories/xss-in-google-analytics-by-yoast-premium-by-privileged-users/

Classification

Type	XSS
OWASP Top 10	A7: Cross-Site Scripting (XSS)
CWE	CWE-79

Miscellaneous

Submitter	ethicalhack3r
Submitter Website	https://dewhurstsecurity.com/
Submitter Twitter	ethicalhack3r
Views	6663
Verified	No
WPVDB ID	8147

Timeline

Publicly Published	2015-08-10 (almost 5 years ago)
Added	2015-08-10 (almost 5 years ago)
Last Updated	2019-10-22 (9 months ago)

Our Other Services

Online WordPress Vulnerability Scanner

WPScan WordPress Security Plugin