Vulnerability Description
A vulnerability classified as problematic was found in Google Analytics Top Content Widget Plugin up to 1.5.6 on WordPress. Affected by this vulnerability is an unknown functionality of the file class-tgm-plugin-activation.php. The manipulation leads to cross site scripting. The attack can be launched remotely. Upgrading to version 1.5.7 is able to address this issue. The identifier of the patch is 25bb1dea113716200a6f0f3135801d84a7a65540. It is recommended to upgrade the affected component. The identifier VDB-226117 was assigned to this vulnerability.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Google Analytics Top Content Widget Project | Google Analytics Top Content Widget | < 1.5.7 |
Related Weaknesses (CWE)
References
- https://github.com/wp-plugins/google-analytics-top-posts-widget/commit/25bb1dea1Patch
- https://vuldb.com/?ctiid.226117Permissions RequiredThird Party Advisory
- https://vuldb.com/?id.226117Permissions RequiredThird Party Advisory
- https://github.com/wp-plugins/google-analytics-top-posts-widget/commit/25bb1dea1Patch
- https://vuldb.com/?ctiid.226117Permissions RequiredThird Party Advisory
- https://vuldb.com/?id.226117Permissions RequiredThird Party Advisory
FAQ
What is CVE-2015-10101?
CVE-2015-10101 is a vulnerability with a CVSS score of 3.5 (LOW). A vulnerability classified as problematic was found in Google Analytics Top Content Widget Plugin up to 1.5.6 on WordPress. Affected by this vulnerability is an unknown functionality of the file class...
How severe is CVE-2015-10101?
CVE-2015-10101 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-10101?
Check the references section above for vendor advisories and patch information. Affected products include: Google Analytics Top Content Widget Project Google Analytics Top Content Widget.