3 matches found
CVE-2021-24999
creationtimestamp| type| source ---|---|--- 2022-01-03 16:44:02+00:00| seen| https://t.me/cibsecurity/34852...
CVE-2021-24999 Booster for Woocommerce < 5.4.9 - Reflected Cross-Site Scripting in PDF Invoicing Module
The Booster for WooCommerce WordPress plugin before 5.4.9 does not sanitise and escape the wcjnotice parameter before outputting it back in the admin dashboard when the Pdf Invoicing module is enabled, leading to a Reflected Cross-Site Scripting...
CVE-2021-24999
CVE-2021-24999 concerns the Booster for WooCommerce WordPress plugin, up to version 5.4.8. The vulnerability is a reflected Cross-Site Scripting in the Pdf Invoicing module, where the wcj_notice parameter is not properly sanitised/escaped before being output in the admin dashboard. Affected compo...