CVE-2024-9170 | Booster for WooCommerce Plugin up to 7.2.3 on WordPress Shortcode wcj_product_meta cross site scripting

Posted by Angelo Barbosa | Nov 26, 2024 | CVE

A vulnerability was found in Booster for WooCommerce Plugin up to 7.2.3 on WordPress. It has been classified as problematic. This affects the function wcj_product_meta of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-9170. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-9170 | Booster for WooCommerce Plugin up to 7.2.3 on WordPress Shortcode wcj_product_meta cross site scripting

Related Posts

CVE-2024-43795 | OpenC3 cosmos Open Source Edition up to 5.18.x cross site scripting (GHSA-vfj8-5pj7-2f9g)

CVE-2024-36586 | AdGuard AdGuardHome 0.93 Privilege Escalation

CVE-2024-23525 | Spreadsheet::ParseXLSX up to 0.29 on Perl XML::Twig no_xxe xml external entity reference (Issue 10)

CVE-2024-6457 | HUSKY Plugin up to 1.3.6 on WordPress sql injection