WordPress plugin QR Code for WooCommerce order emails, PDF invoices, packing slips 跨站脚本漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scriptin...

CVE-2024-37522

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Dario Curasì CC & BCC for Woocommerce Order Emails allows Stored XSS.This issue affects CC & BCC for Woocommerce Order Emails: from n/a through 1.4.1...

CVE-2024-37522

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Dario Curasì CC & BCC for Woocommerce Order Emails allows Stored XSS.This issue affects CC & BCC for Woocommerce Order Emails: from n/a through 1.4.1...

CVE-2024-37522 WordPress CC & BCC for Woocommerce Order Emails plugin <= 1.4.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Dario Curasì CC & BCC for Woocommerce Order Emails allows Stored XSS.This issue affects CC & BCC for Woocommerce Order Emails: from n/a through 1.4.1...

CVE-2024-37522 WordPress CC & BCC for Woocommerce Order Emails plugin <= 1.4.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Dario Curasì CC & BCC for Woocommerce Order Emails allows Stored XSS.This issue affects CC & BCC for Woocommerce Order Emails: from n/a through 1.4.1...

CVE-2024-37522

CVE-2024-37522 affects the WordPress plugin CC & BCC for Woocommerce Order Emails. The vulnerability is a Stored Cross-Site Scripting (XSS) issue due to improper handling during web page generation. Affected versions are 1.4.1 and earlier; at the time of the provided data, remediation for this CV...

PT-2024-27627 · Woocommerce · Cc & Bcc For Woocommerce Order Emails

Name of the Vulnerable Software and Affected Versions: CC & BCC for Woocommerce Order Emails versions 1.4.1 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS, which means...

WordPress CC & BCC for Woocommerce Order Emails plugin <=1.4.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin CC & BCC for Woocommerce Order Emails versions = 1.4.1...

WordPress CC & BCC for Woocommerce Order Emails Plugin <=1.4.1 is vulnerable to Cross Site Scripting (XSS)

Software CC & BCC for Woocommerce Order Emails Type Plugin Vulnerable versions =1.4.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37522 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 97ed69adae1a Credits Joshua Chan Require...

Solidus 安全漏洞

Solidus is an open source e-commerce system. Solidus suffers from a security vulnerability that stems from the fact that the software's regular expressions in emails used to validate guest orders can be exponentially backtracked through fragments such as a.a.a, which can be exploited by an attack...