2 matches found
CVE-2022-2092 WooCommerce PDF Invoices & Packing Slips < 2.16.0 - Reflected Cross-Site Scripting
The WooCommerce PDF Invoices & Packing Slips WordPress plugin before 2.16.0 doesn't escape a parameter on its setting page, making it possible for attackers to conduct reflected cross-site scripting attacks...
CVE-2022-2092
CVE-2022-2092 affects the WooCommerce PDF Invoices & Packing Slips WordPress plugin prior to 2.16.0. The setting page fails to escape a user-supplied parameter, enabling reflected cross-site scripting attacks. Affected product is the WordPress plugin; root cause is lack of proper input escaping o...