[Resolved] Cross-Site Scripting Vulnerability – WARNING
In a few days:
but reading this below shows that WooCommerce is vulnerable:
“The plugin suffers from a XSS issue due to a failure to properly sanitize user-supplied input to the ‘hide-wc-extensions-message’ parameter in the ‘admin/woocommerce-admin-settings.php’ script. Attackers can exploit this weakness to execute arbitrary HTML and script code in a user’s browser session.“
when you release a new version 2.0.18?
- The topic ‘[Resolved] Cross-Site Scripting Vulnerability – WARNING’ is closed to new replies.