← Back

Dashboard For Google Analytics

dashboard_for_google_analytics

Vendor: Sharethis • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-1507
1Sharethis
1Dashboard For Google Analytics
Mar 27, 2025
Mar 14, 2025
N/A· v4
5.3 MEDIUM· v3
N/A· v2
The ShareThis Dashboard for Google Analytics plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the handle_actions() function in all versions up to, and including...Show more
The ShareThis Dashboard for Google Analytics plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the handle_actions() function in all versions up to, and including, 3.2.1. This makes it possible for unauthenticated attackers to disable all features.Show less
CVE-2021-24438
1Sharethis
1Dashboard For Google Analytics
Nov 21, 2024
Aug 30, 2021
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The ShareThis Dashboard for Google Analytics WordPress plugin before 2.5.2 does not sanitise or escape the 'ga_action' parameter in the stats view before outputting it back in an attribute when the plugin is connected to...Show more
The ShareThis Dashboard for Google Analytics WordPress plugin before 2.5.2 does not sanitise or escape the 'ga_action' parameter in the stats view before outputting it back in an attribute when the plugin is connected to a Google Analytics account, leading to a reflected Cross-Site Scripting issue which will be executed in the context of a logged in administratorShow less