4 matches found
CVE-2024-38669
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in a3rev Software WooCommerce Predictive Search allows Reflected XSS.This issue affects WooCommerce Predictive Search: from n/a through 6.0.1...
CVE-2024-38669
CVE-2024-38669 is a reflected XSS in a3rev Software WooCommerce Predictive Search (WooCommerce Predictive Search) that affects the plugin up to version 6.0.1. The root cause is improper neutralization of input during web page generation, enabling input values to be reflected in the response and e...
CVE-2024-38669 WordPress Predictive Search for WooCommerce plugin <= 6.0.1 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in a3rev Software WooCommerce Predictive Search allows Reflected XSS.This issue affects WooCommerce Predictive Search: from n/a through 6.0.1...
WordPress WooCommerce Predictive Search Plugin <= 6.0.1 is vulnerable to Cross Site Scripting (XSS)
Software WooCommerce Predictive Search Type Plugin Vulnerable versions = 6.0.1 Fixed in 6.1.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-38669 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID cc85cd918a33 Credits LVT-tholv2k Requir...