WooCommerce Green Wallet Gateway < 1.0.2 - Reflected Cross Site Scripting in checkout page
CVE-2022-1673
6.1MEDIUM
What is CVE-2022-1673?
The WooCommerce Green Wallet Gateway WordPress plugin before 1.0.2 does not escape the error_envision query parameter before outputting it to the page, leading to a Reflected Cross-Site Scripting vulnerability.
Affected Version(s)
WooCommerce Green Wallet Gateway 1.0.2