Primary

Context

MainWP Google Analytics Extension SQL Injection Vulnerability

Vulnerability

Patched

A SQL injection vulnerability has been identified in the MainWP Google Analytics Extension for WordPress, affecting versions through 4.0.4. This vulnerability allows authenticated subscribers and higher to manipulate database queries, potentially leading to unauthorized data access or modification.

Impact

Exploitation of this vulnerability allows for direct interaction with the database, which could be used to steal information or manipulate data.

Remediation

Users of the MainWP Google Analytics Extension should update to version 4.0.5 or later. Patchstack users can enable auto-update for vulnerable plugins.

Added: May 15, 2026, 12:17 PM

Updated: May 15, 2026, 12:17 PM

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

2.5

exploitability

5.4

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

2.5

exploitability

5.4

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

MainWP Google Analytics Extension SQL Injection Vulnerability

Vulnerability

Impact

Remediation

Affected Products

MainWP Google Analytics Extension

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating