Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
WordPress Plugin 'WP Statistics' Remote File Inclusion Vulnerability
Summary
A security issue has been found in the 'WP Statistics' plugin for WordPress. If exploited, an attacker could potentially run malicious code on your website. To fix this, update the plugin to the latest version or remove it until a patch is available.
What to do
- Update chainguard arangodb-3.11 to version 3.11.14.3-r0.
- Update chainguard arangodb-3.12 to version 3.12.7.2-r2.
- Update chainguard argo-workflows-ui-3.6 to version 3.6.19-r2.
- Update chainguard argo-workflows-ui-3.7 to version 3.7.10-r3.
- Update chainguard argo-workflows-ui-4.0 to version 4.0.1-r2.
- Update chainguard eslint to version 10.0.2-r0.
- Update chainguard kubeflow-centraldashboard to version 1.10.0-r12.
- Update chainguard kubeflow-pipelines-frontend to version 2.15.0-r12.
- Update chainguard langfuse-2 to version 2.95.12-r10.
- Update chainguard langfuse-2-worker to version 2.95.12-r10.
- Update chainguard langfuse-3 to version 3.155.1-r2.
- Update chainguard langfuse-3-worker to version 3.155.1-r2.
- Update chainguard langfuse-fips-2 to version 2.95.12-r15.
- Update chainguard langfuse-fips-2-worker to version 2.95.12-r15.
- Update chainguard langfuse-fips-3 to version 3.155.1-r1.
- Update chainguard langfuse-fips-3-worker to version 3.155.1-r1.
- Update chainguard librechat to version 0.8.2-r4.
- Update chainguard opensearch-dashboards-2-dashboards-observability to version 2.19.4-r11.
- Update chainguard opensearch-dashboards-2-fips-dashboards-observability to version 2.19.4-r11.
- Update chainguard opensearch-dashboards-3-dashboards-observability to version 3.5.0-r5.
- Update chainguard opensearch-dashboards-3-fips-dashboards-observability to version 3.5.0-r3.
- Update chainguard prism to version 5.14.3-r7.
- Update chainguard renovate to version 43.38.0-r1.
- Update chainguard serve to version 14.2.6-r0.
- Update chainguard tileserver-gl to version 5.5.0-r5.
- Update chainguard tileserver-gl-fips to version 5.5.0-r6.
- Update chainguard vitess-22 to version 22.0.3-r2.
- Update chainguard vitess-23 to version 23.0.2-r1.
- Update wolfi argo-workflows-ui-3.7 to version 3.7.10-r3.
- Update wolfi argo-workflows-ui-4.0 to version 4.0.1-r2.
- Update wolfi eslint to version 10.0.2-r0.
- Update wolfi kubeflow-centraldashboard to version 1.10.0-r12.
- Update wolfi kubeflow-pipelines-frontend to version 2.15.0-r12.
- Update wolfi langfuse-3 to version 3.155.1-r2.
- Update wolfi langfuse-3-worker to version 3.155.1-r2.
- Update wolfi opensearch-dashboards-2-dashboards-observability to version 2.19.4-r11.
- Update wolfi opensearch-dashboards-3-dashboards-observability to version 3.5.0-r5.
- Update wolfi prism to version 5.14.3-r7.
- Update wolfi renovate to version 43.38.0-r1.
- Update wolfi serve to version 14.2.6-r0.
- Update wolfi tileserver-gl to version 5.5.0-r5.
- Update wolfi vitess-22 to version 22.0.3-r2.
- Update wolfi vitess-23 to version 23.0.2-r1.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| chainguard | arangodb-3.11 | <= 3.11.14.3-r0 | 3.11.14.3-r0 |
| chainguard | arangodb-3.12 | <= 3.12.7.2-r2 | 3.12.7.2-r2 |
| chainguard | argo-workflows-ui-3.6 | <= 3.6.19-r2 | 3.6.19-r2 |
| chainguard | argo-workflows-ui-3.7 | <= 3.7.10-r3 | 3.7.10-r3 |
| chainguard | argo-workflows-ui-4.0 | <= 4.0.1-r2 | 4.0.1-r2 |
| chainguard | eslint | <= 10.0.2-r0 | 10.0.2-r0 |
| chainguard | kubeflow-centraldashboard | <= 1.10.0-r12 | 1.10.0-r12 |
| chainguard | kubeflow-pipelines-frontend | <= 2.15.0-r12 | 2.15.0-r12 |
| chainguard | langfuse-2 | <= 2.95.12-r10 | 2.95.12-r10 |
| chainguard | langfuse-2-worker | <= 2.95.12-r10 | 2.95.12-r10 |
| chainguard | langfuse-3 | <= 3.155.1-r2 | 3.155.1-r2 |
| chainguard | langfuse-3-worker | <= 3.155.1-r2 | 3.155.1-r2 |
| chainguard | langfuse-fips-2 | <= 2.95.12-r15 | 2.95.12-r15 |
| chainguard | langfuse-fips-2-worker | <= 2.95.12-r15 | 2.95.12-r15 |
| chainguard | langfuse-fips-3 | <= 3.155.1-r1 | 3.155.1-r1 |
| chainguard | langfuse-fips-3-worker | <= 3.155.1-r1 | 3.155.1-r1 |
| chainguard | librechat | <= 0.8.2-r4 | 0.8.2-r4 |
| chainguard | opensearch-dashboards-2-dashboards-observability | <= 2.19.4-r11 | 2.19.4-r11 |
| chainguard | opensearch-dashboards-2-fips-dashboards-observability | <= 2.19.4-r11 | 2.19.4-r11 |
| chainguard | opensearch-dashboards-3-dashboards-observability | <= 3.5.0-r5 | 3.5.0-r5 |
| chainguard | opensearch-dashboards-3-fips-dashboards-observability | <= 3.5.0-r3 | 3.5.0-r3 |
| chainguard | prism | <= 5.14.3-r7 | 5.14.3-r7 |
| chainguard | renovate | <= 43.38.0-r1 | 43.38.0-r1 |
| chainguard | serve | <= 14.2.6-r0 | 14.2.6-r0 |
| chainguard | tileserver-gl | <= 5.5.0-r5 | 5.5.0-r5 |
| chainguard | tileserver-gl-fips | <= 5.5.0-r6 | 5.5.0-r6 |
| chainguard | vitess-22 | <= 22.0.3-r2 | 22.0.3-r2 |
| chainguard | vitess-23 | <= 23.0.2-r1 | 23.0.2-r1 |
| wolfi | argo-workflows-ui-3.7 | <= 3.7.10-r3 | 3.7.10-r3 |
| wolfi | argo-workflows-ui-4.0 | <= 4.0.1-r2 | 4.0.1-r2 |
| wolfi | eslint | <= 10.0.2-r0 | 10.0.2-r0 |
| wolfi | kubeflow-centraldashboard | <= 1.10.0-r12 | 1.10.0-r12 |
| wolfi | kubeflow-pipelines-frontend | <= 2.15.0-r12 | 2.15.0-r12 |
| wolfi | langfuse-3 | <= 3.155.1-r2 | 3.155.1-r2 |
| wolfi | langfuse-3-worker | <= 3.155.1-r2 | 3.155.1-r2 |
| wolfi | opensearch-dashboards-2-dashboards-observability | <= 2.19.4-r11 | 2.19.4-r11 |
| wolfi | opensearch-dashboards-3-dashboards-observability | <= 3.5.0-r5 | 3.5.0-r5 |
| wolfi | prism | <= 5.14.3-r7 | 5.14.3-r7 |
| wolfi | renovate | <= 43.38.0-r1 | 43.38.0-r1 |
| wolfi | serve | <= 14.2.6-r0 | 14.2.6-r0 |
| wolfi | tileserver-gl | <= 5.5.0-r5 | 5.5.0-r5 |
| wolfi | vitess-22 | <= 22.0.3-r2 | 22.0.3-r2 |
| wolfi | vitess-23 | <= 23.0.2-r1 | 23.0.2-r1 |
Original title
CGA-pjx7-r22p-cr2c
Published: 19 Feb 2026 · Updated: 13 Mar 2026 · First seen: 10 Mar 2026