CVE-2025-22632

Name of the Vulnerable Software and Affected Versions WooCommerce Pricing – Product Pricing versions 1.0.0 through 1.0.9

Description The issue is related to improper neutralization of input during web page generation, which leads to a Cross-site Scripting (XSS) vulnerability. Specifically, it is a Stored XSS vulnerability, meaning the malicious script is stored on the server and executed when a user accesses the affected page.

Recommendations For versions 1.0.0 through 1.0.9, update to a version that contains a fix for this issue to prevent exploitation of the Stored XSS vulnerability.