MonsterInsights – Google Analytics Dashboard for WordPress (Website Stats Made Easy)

Vulnerabilities 17Slug google-analytics-for-wordpressLatest version 10.1.3WordPress.org →

Minimum safe version

10.1.3

Update to 10.1.3 or later to address 17 fixable vulnerabilities

Latest available10.1.3
High 7.1
2026-05-12< 10.1.3

CVE-2026-5371

CVE
N/A
< 5.3.3

Google Analytics by Yoast &lt;= 5.3.2 - Cross-Site Scripting (XSS)

WPScan
N/A
< 5.3.3

Google Analytics by Yoast &lt;= 5.3.2 - Stored Cross-Site Scripting (XSS)

WPScan
N/A
< 5.4

Google Analytics by Yoast &lt;= 5.3.3 - Unauthenticated Cross-Site Scripting (XSS)

WPScan
N/A
< 5.4.5

Google Analytics by Yoast &lt;= 5.4.4 - Authenticated Stored Cross-Site Scripting (XSS)

WPScan
N/A
< 7.2.0

Google Analytics by Monster Insights &lt;= 7.1.0 - Authenticated Stored Cross-Site Scripting (XSS)

WPScan
Medium 6.1
2023-12-26< 8.9.1

WordPress Google Analytics by Monster Insights Plugin < 8.9.1 is vulnerable to Cross Site Scripting (XSS)

PatchstackCVEWordfenceWPScan
N/A
2015-03-06< 5.3.3

MonsterInsights – Google Analytics Dashboard for WordPress <= 5.3.2 - Authenticated Stored Cross-Site Scripting

Wordfence
N/A
2015-03-19< 5.3.3

MonsterInsights – Google Analytics Dashboard for WordPress <= 5.3.2 - Stored Cross-Site Scripting

Wordfence
N/A
2015-04-20< 5.4

MonsterInsights – Google Analytics Dashboard for WordPress (Website Stats Made Easy) <= 5.3.3 - Cross-Site Scripting

Wordfence
N/A
2015-08-10< 5.4.5

MonsterInsights - Google Analytics Dashboard for WordPress <= 5.4.4 - Authenticated Stored Cross-Site Scripting

Wordfence
N/A
2018-09-18< 7.2.0

MonsterInsights – Google Analytics Dashboard for WordPress <= 7.1 - Stored Cross-Site Scripting

Wordfence
N/A
2018-12-07< 7.2.0

WordPress Google Analytics by Monster Insights plugin <= 7.1.0 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Patchstack