CVE-2023-30492

Name of the Vulnerable Software and Affected Versions Vark Minimum Purchase for WooCommerce plugin versions <= 2.0.0.1

Description The issue is related to a Stored Cross-Site Scripting (XSS) vulnerability. It affects users with contributor or higher permissions. The vulnerability allows for the storage and execution of malicious scripts, potentially leading to unauthorized access or data manipulation.

Recommendations For versions <= 2.0.0.1, update to a version higher than 2.0.0.1 to resolve the issue. As a temporary workaround, consider restricting access to the plugin's functionality for users with contributor or higher permissions until a patch is available.