CVE-2024-35777

Name of the Vulnerable Software and Affected Versions WooCommerce versions through 8.9.2

Description The issue is related to an Improper Neutralization of Special Elements in Output Used by a Downstream Component, also known as an 'Injection' vulnerability. This allows for Content Spoofing in Automattic WooCommerce.

Recommendations For versions through 8.9.2, update to a version later than 8.9.2 to resolve the issue. At the moment, there is no information about additional mitigation measures for this specific vulnerability.