CVE-2023-5348
18.12.2023, 20:15
The Product Catalog Mode For WooCommerce WordPress plugin before 5.0.3 does not properly authorize settings updates or escape settings values, leading to stored XSS by unauthenticated users.
| Vendor | Product | Version |
|---|---|---|
| multivendorx | product_catalog_mode_for_woocommerce | 𝑥 < 5.0.3 |
𝑥
= Vulnerable software versions