Cross-site Scripting Vulnerability in WP-OliveCart by WP-OliveCart
CVE-2016-4903

6.1MEDIUM

Key Information:

Vendor: WordPress
Status: WP-olivecart; WP-olivecartpro
Vendor: CVE Published:; 22 May 2017

Summary

The vulnerability in WP-OliveCart prior to version 3.1.3 and WP-OliveCartPro prior to version 3.1.8 allows remote adversaries to execute arbitrary web scripts or HTML code. This occurs through various unspecified vectors, potentially jeopardizing user session integrity and exposing sensitive data. It is crucial for users to update to the latest versions to mitigate these security risks.