EPSS
Percentile
28.6%
This plugin is prone to a cross site scripting vulnerability. It allows remote authenticated administrators to inject arbitrary code by manipulating tax-rate table values in CSV format.
Update the plugin.
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10112