Lucene search
K

5 matches found

CNVD
CNVD
added 2017/01/05 12:0 a.m.5 views

WordPress WooCommerce Plugin Cross-Site Scripting Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.WooCommerce is one of the e-commerce plug-ins. A cross-site scripting vulnerability exists in WordPress WooCommerce...

4.8CVSS5.9AI score0.00904EPSS
Exploits0References1
NVD
NVD
added 2017/01/04 2:59 a.m.14 views

CVE-2016-10112

Cross-site scripting XSS vulnerability in the WooCommerce plugin before 2.6.9 for WordPress allows remote authenticated administrators to inject arbitrary web script or HTML by providing crafted tax-rate table values in CSV format...

4.8CVSS4.8AI score0.00904EPSS
Exploits0References2
OSV
OSV
added 2017/01/04 2:59 a.m.12 views

CVE-2016-10112

Cross-site scripting XSS vulnerability in the WooCommerce plugin before 2.6.9 for WordPress allows remote authenticated administrators to inject arbitrary web script or HTML by providing crafted tax-rate table values in CSV format...

4.8CVSS5.6AI score
Exploits0References2
Cvelist
Cvelist
added 2017/01/04 2:0 a.m.22 views

CVE-2016-10112

Cross-site scripting XSS vulnerability in the WooCommerce plugin before 2.6.9 for WordPress allows remote authenticated administrators to inject arbitrary web script or HTML by providing crafted tax-rate table values in CSV format...

4.9AI score0.00904EPSS
Exploits0References2
CVE
CVE
added 2017/01/04 2:0 a.m.40 views

CVE-2016-10112

CVE-2016-10112 refers to a Cross-site scripting (XSS) vulnerability in the WordPress WooCommerce plugin prior to 2.6.9. The root cause is injectable script via crafted tax-rate CSV values in the WooCommerce tax-rate table, exploitable by remote authenticated administrators. Affected product: WooC...

4.8CVSS4.8AI score0.00904EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder