RSS   Vulnerabilities for
'Collect and deliver interface for woocommerce'
   RSS

2022-07-17
 
CVE-2022-1933

CWE-79
 

 
The CDI WordPress plugin before 5.1.9 does not sanitise and escape a parameter before outputting it back in the response of an AJAX action (available to both unauthenticated and authenticated users), leading to a Reflected Cross-Site Scripting

 


Copyright 2024, cxsecurity.com

 

Back to Top