2 matches found
CVE-2023-32796
CVE-2023-32796 describes an unauthenticated stored XSS vulnerability in the WooCommerce Product Enquiry plugin for WordPress, affecting versions up to 2.3.4 (per the CVE listing). Patch sources indicate a fix in version 2.7.0; Red Hat/Red flags and other connected entries corroborate the vulnerab...
WordPress WooCommerce Product Enquiry Plugin <= 2.6.0 is vulnerable to Cross Site Scripting (XSS)
Software WooCommerce Product Enquiry Type Plugin Vulnerable versions = 2.6.0 Fixed in 2.7.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-32796 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a0016a28fdca Credits Emili...