Lucene search
K

5 matches found

OSV
OSV
added 2022/01/03 1:15 p.m.5 views

CVE-2021-25001

The Booster for WooCommerce WordPress plugin before 5.4.9 does not sanitise and escape the wcjcreateproductsxmlresult parameter before outputting back in the admin dashboard when the Product XML Feeds module is enabled, leading to a Reflected Cross-Site Scripting issue...

6.1CVSS5.8AI score0.00757EPSS
Exploits2References1
Prion
Prion
added 2022/01/03 1:15 p.m.16 views

Cross site scripting

The Booster for WooCommerce WordPress plugin before 5.4.9 does not sanitise and escape the wcjcreateproductsxmlresult parameter before outputting back in the admin dashboard when the Product XML Feeds module is enabled, leading to a Reflected Cross-Site Scripting issue...

2.6CVSS6.1AI score0.00757EPSS
Exploits2References1Affected Software1
WPVulnDB
WPVulnDB
added 2021/12/01 12:0 a.m.25 views

Booster for WooCommerce < 5.4.9 - Reflected Cross-Site Scripting in Product XML Feeds Module

The plugin does not sanitise and escape the wcjcreateproductsxmlresult parameter before outputting back in the admin dashboard when the Product XML Feeds module is enabled, leading to a Reflected Cross-Site Scripting issue PoC The "Product XML Feeds" module needs to be enabled in "Woocommerce -...

6.1CVSS0.2AI score0.00757EPSS
Exploits2Affected Software1
Patchstack
Patchstack
added 2021/12/01 12:0 a.m.22 views

WordPress Booster for WooCommerce plugin <= 5.4.8 - Reflected Cross-Site Scripting (XSS) vulnerability in Product XML Feeds Module

Reflected Cross-Site Scripting XSS vulnerability in Product XML Feeds Module discovered by Jeremie Amsellem in WordPress Booster for WooCommerce plugin versions = 5.4.8. Solution Update the WordPress Booster for WooCommerce plugin to the latest available version at least 5.4.9...

6.1CVSS2.3AI score0.00757EPSS
Exploits2References3Affected Software1
wpexploit
wpexploit
added 2021/12/01 12:0 a.m.413 views

Booster for WooCommerce < 5.4.9 - Reflected Cross-Site Scripting in Product XML Feeds Module

The plugin does not sanitise and escape the wcjcreateproductsxmlresult parameter before outputting back in the admin dashboard when the Product XML Feeds module is enabled, leading to a Reflected Cross-Site Scripting issue The "Product XML Feeds" module needs to be enabled in "Woocommerce - Boost...

6.1CVSS6.1AI score0.00757EPSS
Exploits2
Rows per page
Query Builder