PT-2023-30547 · WordPress · Wp Wham Product Visibility By Country For Woocommerce

Emili Castells

Published

2023-11-14

Updated

2023-11-20

CVE-2023-47660

CVSS v3.1

5.9

Medium

Vector

AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions WP Wham Product Visibility by Country for WooCommerce plugin versions <= 1.4.9

Description The issue is related to a Stored Cross-Site Scripting (XSS) vulnerability. This vulnerability allows an attacker to inject malicious scripts into the website, potentially leading to unauthorized access or control. The vulnerability is present in the WP Wham Product Visibility by Country for WooCommerce plugin and requires administrative access to exploit.

Recommendations For WP Wham Product Visibility by Country for WooCommerce plugin versions <= 1.4.9, update to a version higher than 1.4.9 to resolve the issue. At the moment, there is no information about other mitigation measures.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2023-47660

Affected Products

Wp Wham Product Visibility By Country For Woocommerce

PT-2023-30547 · WordPress · Wp Wham Product Visibility By Country For Woocommerce

CVE-2023-47660

Weakness Enumeration

Related Identifiers

Affected Products

References · 4