top of page

Posts

[WordPress Welcart e-Commerce Plugin](versions 2.8.10 and older) Vulnerability

Updated: Feb 14


[WordPress Welcart e-Commerce Plugin](versions 2.8.10 and older) Vulnerability to Cross-Site Scripting (XSS)


Importance (CVSS3.0)

★★★★★★★☆☆☆ 7.1/ 10  - High


Details

A cross-site scripting (XSS) vulnerability was discovered in WordPress e-Commerce Plugin.


Because of this vulnerability, malicious attackers can inject fraudulent scripts such as redirect, ads, and other HTML payloads into a website that may be executed when guests visit the website.


Solutions

Update the WordPress Welcart e-commerce Plugin to the newest version (2.8.11 and newer).


Source

CVE-2023-22705

We provide information about critical vulnerabilities of WordPress for people who are using or are considering using Wordpress for their projects.


“[WordPress Welcart e-Commerce Plugin](versions 2.8.10 and older) Cross-Site Scripting (XSS) vulnerability”, by WS Securities licensed under CC BY 4.0.

1 view
bottom of page