CVE-2023-33216

Name of the Vulnerable Software and Affected Versions WooDiscuz – WooCommerce Comments versions through 2.2.9

Description The issue is related to a Stored Cross-Site Scripting (XSS) vulnerability. This vulnerability allows Stored XSS and affects the WooDiscuz – WooCommerce Comments plugin. It requires authentication with admin+ privileges to exploit.

Recommendations For versions through 2.2.9, update to a version later than 2.2.9 to resolve the issue. At the moment, there is no information about other specific fixes for this vulnerability.