CVE-2022-0989

Name of the Vulnerable Software and Affected Versions NS WooCommerce Watermark WordPress plugin versions 2.11.3 and earlier

Description The issue allows an unprivileged user to utilize the plugin's functionality to load images that may contain malware. This can be achieved by passing malicious domains through the vulnerable domain, effectively hiding their trace.

Recommendations For versions 2.11.3 and earlier, update to a version later than 2.11.3 to resolve the issue. As a temporary workaround, consider restricting access to the image loading functionality of the NS WooCommerce Watermark WordPress plugin until a patch is available.