WordPress plugin is an application plugin for WordPress. A cross-site scripting vulnerability exists in versions of Wordpress Plugin WooCommerce prior to 2.7.1, which stems from a product wooce admin page that does not securely handle user input data. An attacker could exploit this vulnerability to cause reflected cross-site scripting (XSS).