Lucene search
WpvulndbWPVDB-ID:627B3679-9759-41F6-990F-89B24D59E2F9HistoryMay 04, 2022 - 12:00 a.m.
Checkout Files Upload for WooCommerce < 2.1.3 - Reflected Cross-Site Scripting
2022-05-0400:00:00
wpscan.com
7
woocommerce
plugin
filename sanitization
xss
security issue
EPSS
0.001
Percentile
33.5%
The plugin does not sanitise and escape filenames before outputting them back in order confirmation page, leading to a Reflected Cross-Site Scripting
Related
prion
prion
Cross site scripting
2022-05-20 20:15:00
cvelist
cvelist
cve
cve
CVE-2022-29425
2022-05-20 20:15:10
patchstack
patchstack
nvd
nvd
CVE-2022-29425
2022-05-20 20:15:10