CVE-2023-32801
CVE-2023-32801 : Unauthenticated, reflected Cross-Site Scripting in the WordPress plugin WooCommerce Composite Products up to version 8.7.5 . Root cause: input not properly escaped in the plugin’s output leads to script execution in a victim’s browser. Impact semantics in sources describe XSS wit...