Stored Cross-site scripting (XSS) vulnerability found by ThreatPress Research Team in WordPress Advance Search for WooCommerce plugin (versions <= 1.0.9).
3 June 2018 - plugin still closed by WordPress Security team, no patched version available.