Ayoub Safa

**Name of the Vulnerable Software and Affected Versions** WP Express Checkout plugin for WordPress versions up to, and including, 2.2.8 **Description** The issue is related to Stored Cross-Site Scripting via the `pec coupon[code]` parameter due to insufficient input sanitization and output escaping. This allows authenticated attackers with administrator-level access to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. It can potentially be exploited by lower-privileged users if the `Admin Dashboard Access Permission` setting is set for those users to access the dashboard. **Recommendations** For WP Express Checkout plugin for WordPress versions up to, and including, 2.2.8, update to a version higher than 2.2.8 to resolve the issue. As a temporary workaround, consider restricting access to the dashboard by adjusting the `Admin Dashboard Access Permission` setting to prevent lower-privileged users from exploiting the vulnerability. Additionally, restrict the use of the `pec coupon[code]` parameter until a patch is available.

**Name of the Vulnerable Software and Affected Versions** WP Simple Shopping Cart plugin for WordPress versions up to, and including, 4.6.3 **Description** The issue allows unauthenticated attackers to view sensitive information that should be limited to administrators only. This information can include `first name`, `last name`, `email`, `address`, `IP Address`, and more. The problem arises because the plugin saves shopping cart data exports in a publicly accessible location, specifically at the `/wp-content/plugins/wordpress-simple-paypal-shopping-cart/includes/admin/` endpoint. **Recommendations** For WP Simple Shopping Cart plugin for WordPress versions up to, and including, 4.6.3, consider restricting access to the `/wp-content/plugins/wordpress-simple-paypal-shopping-cart/includes/admin/` endpoint until a patch is available. As a temporary workaround, avoid using the plugin's data export feature to minimize the risk of sensitive information exposure. Update to a version later than 4.6.3 when available.