CVE-2023-45004

Name of the Vulnerable Software and Affected Versions wp3sixty Woo Custom Emails plugin versions <= 2.2

Description The issue is an Unauth. Reflected Cross-Site Scripting (XSS) vulnerability. This means that an attacker can inject malicious scripts into the website, potentially allowing them to steal user data or take control of the user's session.

Recommendations For wp3sixty Woo Custom Emails plugin versions <= 2.2, update to a version higher than 2.2 to resolve the issue. At the moment, there is no information about other specific mitigation measures for this vulnerability.