Lucene search
+L

4 matches found

NVD
NVD
added 2024/07/20 8:15 a.m.7 views

CVE-2024-38669

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in a3rev Software WooCommerce Predictive Search allows Reflected XSS.This issue affects WooCommerce Predictive Search: from n/a through 6.0.1...

7.1CVSS0.00395EPSS
Exploits0References1
CVE
CVE
added 2024/07/20 8:1 a.m.43 views

CVE-2024-38669

CVE-2024-38669 is a reflected XSS in a3rev Software WooCommerce Predictive Search (WooCommerce Predictive Search) that affects the plugin up to version 6.0.1. The root cause is improper neutralization of input during web page generation, enabling input values to be reflected in the response and e...

7.1CVSS7AI score0.00395EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/20 8:1 a.m.16 views

CVE-2024-38669 WordPress Predictive Search for WooCommerce plugin <= 6.0.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in a3rev Software WooCommerce Predictive Search allows Reflected XSS.This issue affects WooCommerce Predictive Search: from n/a through 6.0.1...

7.1CVSS0.00395EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/07/10 12:0 a.m.7 views

WordPress WooCommerce Predictive Search Plugin <= 6.0.1 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Predictive Search Type Plugin Vulnerable versions = 6.0.1 Fixed in 6.1.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-38669 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID cc85cd918a33 Credits LVT-tholv2k Requir...

7.1CVSS6.6AI score0.00395EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder