PT-2020-15273 · Google · Lara Google Analytics Plugin

Jerome Bruandet

·

Published

2020-08-31

·

Updated

2020-09-08

·

CVE-2020-20626

CVSS v3.1

5.4

Medium

VectorAV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Name of the Vulnerable Software and Affected Versions Lara Google Analytics plugin versions through 2.0.4
Description The issue allows for authenticated stored XSS in the Lara Google Analytics plugin.
Recommendations For versions through 2.0.4, update to a version later than 2.0.4 to resolve the issue.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2020-20626

Affected Products

Lara Google Analytics Plugin