RSS   Vulnerabilities for 'Advanced order export'   RSS

2020-05-06
 
CVE-2020-11727

CWE-79
 

 
A cross-site scripting (XSS) vulnerability in the AlgolPlus Advanced Order Export For WooCommerce plugin 3.1.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the view/settings-form.php woe_post_type parameter.

 
2018-06-19
 
CVE-2018-11525

CWE-74
 

 
The plugin "Advanced Order Export For WooCommerce" for WordPress (v1.5.4 and before) is vulnerable to CSV Injection.

 


Copyright 2020, cxsecurity.com

 

Back to Top