CVE-2023-37873

Name of the Vulnerable Software and Affected Versions WooCommerce Shipping Multiple Addresses plugin versions prior to 3.8.6

Description The issue is related to an Unauth. Reflected Cross-Site Scripting (XSS) vulnerability. This vulnerability can be exploited without authentication, allowing for reflected cross-site scripting attacks.

Recommendations For versions prior to 3.8.6, update to version 3.8.6 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive areas of the plugin to minimize the risk of exploitation.