EPSS
Percentile
37.6%
The plugin is vulnerable to reflected XSS via the search_order parameter found in the ~/views/form.php file.
www.wordfence.com/blog/2021/11/woocommerce-extension-reflected-xss-vulnerability/