CVE-2022-4329

The Product list Widget for Woocommerce WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against both unauthenticated and authenticated users (such as high privilege one like admin).
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.1 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
WPScanCNA
---
---
CVEADP
---
---
CISA-ADPADP
6.1 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 35%
VendorProductVersion
product_list_widget_for_woocommerce_projectproduct_list_widget_for_woocommerce
𝑥
≤ 1.0
𝑥
= Vulnerable software versions
References
https://wpscan.com/vulnerability/d7f2c1c1-75b7-4aec-8574-f38d506d064a
https://wpscan.com/vulnerability/d7f2c1c1-75b7-4aec-8574-f38d506d064a