CVE-2024-49640
CVE-2024-49640 – Reflected Cross-Site Scripting in the WordPress plugin ACL Floating Cart for WooCommerce (versions ≤ 0.9). Root cause: improper input neutralization during web page generation . Impact: potential to execute scripts in a user’s browser via a reflected payload; authenticated/unauth...