WordPress e-shops plugin <= 1.0.4 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin e-shops versions = 1.0.4...

WordPress e-shops Plugin <= 1.0.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software e-shops Type Plugin Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-51648 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 41a29a656a44 Credits SOPROBRO Required privilege...