3 matches found
CVE-2021-34664 Moova for WooCommerce <= 3.5 Reflected Cross-Site Scripting
The Moova for WooCommerce WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the lat parameter in the /Checkout/Checkout.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 3.5...
CVE-2021-34664
The CVE-2021-34664 entry documents a Reflected Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Moova for WooCommerce . The issue is triggered by the lat parameter in the file path ~/Checkout/Checkout.php, allowing injection of arbitrary scripts in vulnerable versions up to 3.5. M...
CVE-2021-34664 Moova for WooCommerce <= 3.5 Reflected Cross-Site Scripting
The Moova for WooCommerce WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the lat parameter in the /Checkout/Checkout.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 3.5...