mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-30 02:00:45 +00:00
879 B
879 B
CVE-2022-2092
&color=brighgreen)
Description
The WooCommerce PDF Invoices & Packing Slips WordPress plugin before 2.16.0 doesn't escape a parameter on its setting page, making it possible for attackers to conduct reflected cross-site scripting attacks.
POC
Reference
- https://wpscan.com/vulnerability/87546554-276a-45fe-b2aa-b18bfc55db2d
- https://wpscan.com/vulnerability/87546554-276a-45fe-b2aa-b18bfc55db2d