Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

pixelyoursite — Vulnerabilities & Security Advisories 13

Browse all 13 CVE security advisories affecting pixelyoursite. AI-powered Chinese analysis, POCs, and references for each vulnerability.

PixelYourSite is a WordPress plugin designed for conversion tracking and marketing automation. Historically, it has been susceptible to multiple security vulnerabilities, including cross-site scripting (XSS), remote code execution (RCE), and privilege escalation issues. The plugin's 13 recorded CVEs highlight recurring problems related to insufficient input validation and improper access controls. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities suggests potential risks for unpatched installations. Users are advised to maintain current versions to mitigate these known security weaknesses.

Top products by pixelyoursite: PixelYourSite – Your smart PIXEL (TAG) & API Manager PixelYourSite – Your smart PIXEL (TAG) Manager PixelYourSite Pro – Your smart PIXEL (TAG) Manager Product Catalog Feed by PixelYourSite
CVE IDTitleCVSSSeverityPublished
CVE-2026-7049 PixelYourSite Pro <= 12.5.0.1 - Unauthenticated Blind Server-Side Request Forgery via 'urls[]' Parameter — PixelYourSite Pro – Your smart PIXEL (TAG) ManagerCWE-918 7.2 High2026-05-02
CVE-2026-27072 WordPress PixelYourSite – Your smart PIXEL (TAG) Manager plugin <= 11.2.0.1 - Cross Site Scripting (XSS) vulnerability — PixelYourSite – Your smart PIXEL (TAG) ManagerCWE-79 7.1 High2026-02-20
CVE-2026-1841 PixelYourSite <= 11.2.0 - Unauthenticated Stored Cross-Site Scripting — PixelYourSite – Your smart PIXEL (TAG) & API ManagerCWE-79 7.2 High2026-02-13
CVE-2026-1844 PixelYourSite PRO <= 12.4.0.2 - Unauthenticated Stored Cross-Site Scripting — PixelYourSite Pro – Your smart PIXEL (TAG) ManagerCWE-79 7.2 High2026-02-13
CVE-2025-14280 PixelYourSite <= 11.1.5 - Sensitive Information Exposure via Log File — PixelYourSite – Your smart PIXEL (TAG) & API ManagerCWE-200 5.3 Medium2025-12-29
CVE-2025-10588 PixelYourSite <= 11.1.2 – Cross-Site Request Forgery to GDPR Options Modification — PixelYourSite – Your smart PIXEL (TAG) & API ManagerCWE-352 4.3 Medium2025-10-22
CVE-2025-0769 PixelYourSite 10.1.1.1 - Insecure deserialization CWE-502 8.8 -2025-02-28
CVE-2025-22300 WordPress PixelYourSite plugin <= 10.0.1.2 - Cross Site Request Forgery (CSRF) vulnerability — PixelYourSite – Your smart PIXEL (TAG) ManagerCWE-352 5.4 Medium2025-01-07
CVE-2024-7870 PixelYourSite – Your smart PIXEL (TAG) & API Manager <= 9.7.1 and PixelYourSite PRO <= 10.4.2 - Unauthenticated Information Exposure and Log Deletion — PixelYourSite – Your smart PIXEL (TAG) & API ManagerCWE-287 6.5 Medium2024-09-04
CVE-2024-37447 WordPress PixelYourSite plugin <= 9.6.1.1 - Cross Site Scripting (XSS) vulnerability — PixelYourSite – Your smart PIXEL (TAG) ManagerCWE-79 5.9 Medium2024-07-21
CVE-2023-49824 WordPress Product Catalog Feed by PixelYourSite Plugin <= 2.1.1 is vulnerable to Cross Site Request Forgery (CSRF) — Product Catalog Feed by PixelYourSiteCWE-352 5.4 Medium2023-12-17
CVE-2023-2584 PixelYourSite <= 9.3.6 and PixelYourSite Pro <= 9.6.1 - Authenticated (Administrator+) Stored Cross-Site Scripting — PixelYourSite – Your smart PIXEL (TAG) & API ManagerCWE-79 4.4 Medium2023-06-09
CVE-2023-22700 WordPress PixelYourSite – Your smart PIXEL (TAG) Manager Plugin <= 9.3.0 is vulnerable to Cross Site Request Forgery (CSRF) — PixelYourSite – Your smart PIXEL (TAG) ManagerCWE-352 4.3 Medium2023-03-13

This page lists every published CVE security advisory associated with pixelyoursite. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.