Lucene search
Woocommerce Quick Reports Security Vulnerabilities
cve
The MULTIDOTS WooCommerce Quick Reports plugin 1.0.6 and earlier for WordPress is vulnerable to Stored XSS. It allows an attacker to inject malicious JavaScript code on the WooCommerce -> Orders admin page. The attack is possible by modifying the "referral_site" cookie to have an XSS payload, an...
6.1CVSS
5.9AI Score
0.001EPSS
2018-06-01 03:29 PM
31