CVE-2022-1546
CVE-2022-1546 affects the WordPress plugin WooCommerce - Product Importer (≤ 1.5.2). The vulnerability arises because imported data is not sanitized/escaped before it is output on the page, enabling a Reflected Cross-Site Scripting attack. The issue is triggered via the admin CSV import workflow ...