Lucene search
HistoryMay 02, 2024 - 5:15 p.m.
CVE-2024-33949
vark
woocommerce
xss
vulnerability
cve-2024-33949
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
AI Score
6.8
Confidence
High
EPSS
0
Percentile
9.0%
Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Vark Min and Max Purchase for WooCommerce allows Stored XSS.This issue affects Min and Max Purchase for WooCommerce: from n/a through 2.0.0.
Related
cvelist
cvelist
cve
cve
CVE-2024-33949
2024-05-02 17:15:21
vulnrichment
vulnrichment
wpvulndb
wpvulndb
wordfence
wordfence
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
AI Score
6.8
Confidence
High
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2024-33949