Nitstorm

Name of the Vulnerable Software and Affected Versions: WordPress versions prior to 4.9.5 Description: The issue arises from the version string not being properly escaped in the get the generator function, potentially leading to XSS in a generator tag. Recommendations: For versions prior to 4.9.5, update to version 4.9.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Google Analyticator Wordpress Plugin versions prior to 6.4.9.3 rev @1183563 **Description** The issue is related to a cross-site request forgery (CSRF) vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web application that the user is authenticated to. **Recommendations** For versions prior to 6.4.9.3 rev @1183563, update to version 6.4.9.3 rev @1183563 or later to resolve the issue.