4 matches found
CVE-2025-24586
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bitsstech Shipment Tracker for Woocommerce shipment-tracker-for-woocommerce allows Reflected XSS.This issue affects Shipment Tracker for Woocommerce: from n/a through = 1.4.23...
CVE-2025-24586
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bitsstech Shipment Tracker for Woocommerce shipment-tracker-for-woocommerce allows Reflected XSS.This issue affects Shipment Tracker for Woocommerce: from n/a through = 1.4.23...
CVE-2025-24586 WordPress Shipment Tracker for Woocommerce plugin <= 1.4.23 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bitsstech Shipment Tracker for Woocommerce shipment-tracker-for-woocommerce allows Reflected XSS.This issue affects Shipment Tracker for Woocommerce: from n/a through = 1.4.23...
CVE-2025-24586
The CVE-2025-24586 entry concerns bitsstech Shipment Tracker for Woocommerce (WordPress plugin). Affected component: the Shipment Tracker for Woocommerce plugin, version range n/a through 1.4.23. Root cause: Improper Neutralization of Input During Web Page Generation, i.e., a Reflected XSS vulner...