CVE-2022-2092

WooCommerce PDF Invoices & Packing Slips < 2.16.0 - Reflected Cross-Site Scripting

EPSS 0.7%CWE-79

The WooCommerce PDF Invoices & Packing Slips WordPress plugin before 2.16.0 doesn't escape a parameter on its setting page, making it possible for attackers to conduct reflected cross-site scripting attacks.

Produtos afetados

Unknown · WooCommerce PDF Invoices & Packing Slips

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://wpscan.com/vulnerability/87546554-276a-45fe-b2aa-b18bfc55db2d