WordPress Event Manager for WooCommerce Plugin <= 3.8.6 is vulnerable to Cross Site Scripting (XSS)
CVE-2023-28422
4.8MEDIUM
Key Information:
- Vendor
WordPress
- Vendor
- CVE Published:
- 23 March 2023
What is CVE-2023-28422?
Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in MagePeople Team Event Manager and Tickets Selling Plugin for WooCommerce <=Â 3.8.6. versions.
Affected Version(s)
Event Manager and Tickets Selling Plugin for WooCommerce <= 3.8.6