3 matches found
CVE-2023-34004
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in WooCommerce WooCommerce Box Office plugin = 1.1.50 versions...
CVE-2023-34004
CVE-2023-34004 affects the WordPress plugin WooCommerce Box Office, specifically versions up to and including 1.1.50. The vulnerability is a Stored Cross-Site Scripting (XSS) that can be triggered by authenticated users with contributor-level permissions. The issue is resolved in version 1.1.51 o...
WordPress WooCommerce Box Office Plugin <= 1.1.50 is vulnerable to Cross Site Scripting (XSS)
Software WooCommerce Box Office Type Plugin Vulnerable versions = 1.1.50 Fixed in 1.1.51 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-34004 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 270c72521204 Credits Rafie Muhammad...