11 matches found
CVE-2022-1673
The WooCommerce Green Wallet Gateway WordPress plugin before 1.0.2 does not escape the errorenvision query parameter before outputting it to the page, leading to a Reflected Cross-Site Scripting vulnerability...
WooCommerce Green Wallet Gateway WordPress plugin cross-site scripting vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. The WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in versions of the WooCommerce Green Wallet Gateway WordPress...
CVE-2022-1673
The WooCommerce Green Wallet Gateway WordPress plugin before 1.0.2 does not escape the errorenvision query parameter before outputting it to the page, leading to a Reflected Cross-Site Scripting vulnerability...
CVE-2022-1673
The WooCommerce Green Wallet Gateway WordPress plugin before 1.0.2 does not escape the errorenvision query parameter before outputting it to the page, leading to a Reflected Cross-Site Scripting vulnerability...
Cross site scripting
The WooCommerce Green Wallet Gateway WordPress plugin before 1.0.2 does not escape the errorenvision query parameter before outputting it to the page, leading to a Reflected Cross-Site Scripting vulnerability...
WordPress plugin Green Wallet Gateway 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. The WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in versions of the WooCommerce Green Wallet Gateway WordPress...
CVE-2022-1673 WooCommerce Green Wallet Gateway < 1.0.2 - Reflected Cross Site Scripting in checkout page
The WooCommerce Green Wallet Gateway WordPress plugin before 1.0.2 does not escape the errorenvision query parameter before outputting it to the page, leading to a Reflected Cross-Site Scripting vulnerability...
CVE-2022-1673
The CVE-2022-1673 entry concerns the WooCommerce Green Wallet Gateway WordPress plugin (pre-1.0.2). The vulnerability arises from not escaping the error_envision query parameter before it is output on the checkout page, causing a Reflected Cross-Site Scripting (XSS) vulnerability. Affected versio...
WooCommerce Green Wallet Gateway < 1.0.2 - Reflected Cross Site Scripting in checkout page
The plugin does not escape the errorenvision query parameter before outputting it to the page, leading to a Reflected Cross-Site Scripting vulnerability. PoC 1. Enable greenwallet-gateway as a woocommerce payment gateway 2. add something in your cart and visit the checkout page 3. visit...
WooCommerce Green Wallet Gateway < 1.0.2 - Reflected Cross Site Scripting in checkout page
The plugin does not escape the errorenvision query parameter before outputting it to the page, leading to a Reflected Cross-Site Scripting vulnerability. 1. Enable greenwallet-gateway as a woocommerce payment gateway 2. add something in your cart and visit the checkout page 3. visit...
WordPress WooCommerce Green Wallet Gateway plugin <= 1.0.1 - Reflected Cross-Site Scripting (XSS) vulnerability
Reflected Cross-Site Scripting XSS vulnerability discovered by goodguyandy in WordPress WooCommerce Green Wallet Gateway plugin versions = 1.0.1. Solution Update the WordPress WooCommerce Green Wallet Gateway plugin to the latest available version at least 1.0.2...