3 matches found
CVE-2024-6691
The Easy Digital Downloads – Sell Digital Files & Subscriptions eCommerce Store + Payments Made Easy plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the currency value in all versions up to, and including, 3.3.2 due to insufficient input sanitization and output escaping. Thi...
CVE-2024-0659 Easy Digital Downloads <= 3.2.6 - Authenticated(Shop Manager+) Stored Cross-Site Scripting via variable pricing options
The Easy Digital Downloads – Sell Digital Files eCommerce Store & Payments Made Easy plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the variable pricing option title in all versions up to, and including, 3.2.6 due to insufficient input sanitization and output escaping. This...
CVE-2023-51684
CVE-2023-51684 is an XSS vulnerability in the WordPress plugin plugin: Easy Digital Downloads – Sell Digital Files (eCommerce Store & Payments Made Easy), affecting versions up to 3.2.5. The issue is described as Stored Cross-Site Scripting caused by improper neutralization of input during web pa...