CVE-2023-6892 | EAN for WooCommerce up to 4.9.2 on WordPress Shortcode alg_wc_ean_product_meta cross site scripting

Inserito da Angelo Barbosa | Apr 18, 2024 | CVE

A vulnerability was found in EAN for WooCommerce up to 4.9.2 on WordPress. It has been classified as problematic. Affected is the function alg_wc_ean_product_meta of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2023-6892. It is possible to launch the attack remotely. There is no exploit available.

CVE-2023-6892 | EAN for WooCommerce up to 4.9.2 on WordPress Shortcode alg_wc_ean_product_meta cross site scripting

Post correlati

CVE-2024-4591 | DedeCMS 5.7 sys_group_add.php cross-site request forgery

CVE-2024-36997 | Splunk Enterprise/Cloud Platform conf-web Settings REST Endpoint cross site scripting (SVD-2024-0717)

CVE-2023-44383 | October CMS up to 3.5.1 Media Manager cross site scripting (GHSA-rvx8-p3xp-fj3p)

CVE-2024-43304 | Cool Plugins Cryptocurrency Widgets Plugin up to 2.8.0 on WordPress cross site scripting