WordPress Custom WooCommerce Checkout Fields Editor Plugin <= 1.2.9 is vulnerable to Cross Site Scripting (XSS)

Software Custom WooCommerce Checkout Fields Editor Type Plugin Vulnerable versions = 1.2.9 Fixed in 1.3.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID bb5649dadedf Credits Rafie...

CVE-2020-36731

The Flexible Checkout Fields for WooCommerce plugin for WordPress is vulnerable to Unauthenticated Arbitrary Plugin Settings update, in addition to Stored Cross-Site Scripting in versions up to, and including, 2.3.1. This is due to missing authorization checks on the updateSettingsAction function...

PT-2023-11873

Name of the Vulnerable Software and Affected Versions Flexible Checkout Fields for WooCommerce plugin for WordPress versions up to and including 2.3.1 Description The issue is caused by missing authorization checks on the updateSettingsAction function, which is called via an admin init hook, and...

WordPress Plugin Flexible Checkout Fields for WooCommerce 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blog sites on PHP and MySQL servers.WordPress plugin is an...

CVE-2022-46864

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Umair Saleem Woocommerce Custom Checkout Fields Editor With Drag & Drop plugin = 0.1 versions...

CVE-2022-46864

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Umair Saleem Woocommerce Custom Checkout Fields Editor With Drag & Drop plugin = 0.1 versions...

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Umair Saleem Woocommerce Custom Checkout Fields Editor With Drag & Drop plugin = 0.1 versions...

CVE-2022-46864

CVE-2022-46864 affects the WordPress plugin “Umair Saleem Woocommerce Custom Checkout Fields Editor With Drag & Drop” (versions

PT-2023-15089 · WordPress · Umair Saleem Woocommerce Custom Checkout Fields Editor With Drag & Drop

Name of the Vulnerable Software and Affected Versions: Umair Saleem Woocommerce Custom Checkout Fields Editor With Drag & Drop plugin versions = 0.1 Description: The issue is related to an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This allows for malicious scripts to be injected...

WordPress plugin Woocommerce Custom Checkout Fields Editor With Drag & Drop 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

WordPress Woocommerce Custom Checkout Fields Editor With Drag & Drop Plugin <= 0.1 is vulnerable to Cross Site Scripting (XSS)

Software Woocommerce Custom Checkout Fields Editor With Drag & Drop Type Plugin Vulnerable versions = 0.1 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2022-46864 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

Woocommerce Custom Checkout Fields Editor With Drag & Drop <= 0.1 - Reflected Cross-Site Scripting

The plugin does not sanitise and escape the "tab" parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

WordPress plugin 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

WordPress Custom WooCommerce Checkout Fields Editor plugin <= 1.2.5 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Custom WooCommerce Checkout Fields Editor plugin versions = 1.2.5. Solution Update the WordPress Custom WooCommerce Checkout Fields Editor plugin to the latest available version at least 1.2.7...

VulnCheck KEV: CVE-2020-36731

The Flexible Checkout Fields for WooCommerce plugin for WordPress is vulnerable to Unauthenticated Arbitrary Plugin Settings update, in addition to Stored Cross-Site Scripting in versions up to, and including, 2.3.1. This is due to missing authorization checks on the updateSettingsAction...