- Feb 2
- 1 min read

[WordPress Welcart e-Commerce Plugin](versions 2.8.10 and older) Vulnerability

Updated: Feb 14

[WordPress Welcart e-Commerce Plugin](versions 2.8.10 and older) Vulnerability to Cross-Site Scripting (XSS)

Importance (CVSS3.0)

★★★★★★★☆☆☆ 7.1/ 10　 - High

Details

A cross-site scripting (XSS) vulnerability was discovered in WordPress e-Commerce Plugin.

Because of this vulnerability, malicious attackers can inject fraudulent scripts such as redirect, ads, and other HTML payloads into a website that may be executed when guests visit the website.

Solutions

Update the WordPress Welcart e-commerce Plugin to the newest version (2.8.11 and newer).

Source

CVE-2023-22705

We provide information about critical vulnerabilities of WordPress for people who are using or are considering using Wordpress for their projects.

“[WordPress Welcart e-Commerce Plugin](versions 2.8.10 and older) Cross-Site Scripting (XSS) vulnerability”, by WS Securities licensed under CC BY 4.0.

Enterprise
Server Infrastructure
Management

Posts

[WordPress Welcart e-Commerce Plugin](versions 2.8.10 and older) Vulnerability

Recent Posts

Beyond GTA Inc.

Services

Policies

Beyond GTA Inc.
Suite 200 - 5200 Yonge Street, North York, Ontario, M2N 5P6, Canada

Copyright 2021 Beyond GTA Inc.