PT-2025-9401 · Woocommerce · Tax Report For Woocommerce

Thiennv

Publicado

2025-03-03

Atualizado

2025-03-09

CVE-2025-23731

CVSS v3.1

7.1

Alta

Vetor

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions Tax Report for WooCommerce versions prior to 2.2

Description The issue is related to improper neutralization of input during web page generation, which leads to a Cross-site Scripting (XSS) vulnerability. Specifically, it allows for Reflected XSS attacks.

Recommendations For versions prior to 2.2, update to version 2.2 or later to resolve the issue.

Correção

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-79

Identificadores relacionados

CVE-2025-23731

Produtos afetados

Tax Report For Woocommerce

PT-2025-9401 · Woocommerce · Tax Report For Woocommerce

CVE-2025-23731

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5