Lucene search

PatchstackVULNRICHMENT:CVE-2023-46783

HistoryNov 06, 2023 - 9:26 a.m.

CVE-2023-46783 WordPress Pre-Orders for WooCommerce Plugin <= 1.2.13 is vulnerable to Cross Site Scripting (XSS)

2023-11-0609:26:18

CWE-79

Patchstack

github.com

wordpress

woocommerce

plugin

cross site scripting

vulnerability

AI Score

5.6

Confidence

High

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Bright Plugins Pre-Orders for WooCommerce plugin <= 1.2.13 versions.

References

patchstack.com/database/vulnerability/pre-orders-for-woocommerce/wordpress-pre-orders-for-woocommerce-plugin-1-2-13-cross-site-scripting-xss-vulnerability?_s_id=cve