4 matches found
CVE-2021-25077
The Store Toolkit for WooCommerce WordPress plugin before 2.3.2 does not sanitise and escape the tab parameter before outputting it back in an admin page in an error message, leading to a Reflected Cross-Site Scripting...
CVE-2021-25077
The Store Toolkit for WooCommerce WordPress plugin before 2.3.2 does not sanitise and escape the tab parameter before outputting it back in an admin page in an error message, leading to a Reflected Cross-Site Scripting...
CVE-2021-25077 Store Toolkit for WooCommerce < 2.3.2 - Reflected Cross-Site Scripting
The Store Toolkit for WooCommerce WordPress plugin before 2.3.2 does not sanitise and escape the tab parameter before outputting it back in an admin page in an error message, leading to a Reflected Cross-Site Scripting...
CVE-2021-25077
CVE-2021-25077 affects the WordPress Store Toolkit for WooCommerce plugin prior to version 2.3.2. The vulnerability arises from insufficient sanitisation/escaping of the tab parameter in an admin page error message, enabling Reflected Cross-Site Scripting. Public sources (NVD, Red Hat, CNVD, CVE ...