Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Count_per_day
(Count_per_day_project)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 4 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2012-01-20 | CVE-2012-0896 | Absolute path traversal vulnerability in download.php in the Count Per Day module before 3.1.1 for WordPress allows remote attackers to read arbitrary files via the f parameter. | Count_per_day, Count_per_day | N/A | ||
| 2019-08-21 | CVE-2012-6714 | The count-per-day plugin before 3.2.3 for WordPress has XSS via search words. | Count_per_day | 6.1 | ||
| 2019-06-15 | CVE-2013-7472 | The "Count per Day" plugin before 3.2.6 for WordPress allows XSS via the wp-admin/?page=cpd_metaboxes daytoshow parameter. | Count_per_day | 6.1 | ||
| 2017-10-23 | CVE-2015-5533 | SQL injection vulnerability in counter-options.php in the Count Per Day plugin before 3.4.1 for WordPress allows remote authenticated administrators to execute arbitrary SQL commands via the cpd_keep_month parameter to wp-admin/options-general.php. NOTE: this can be leveraged using CSRF to allow remote attackers to execute arbitrary SQL commands. | Count_per_day | 7.2 |