WordPress Order date time for WooCommerce Plugin <= 3.0.19 is vulnerable to Cross Site Scripting (XSS)
CVE-2023-28991
4.8MEDIUM
Key Information:
- Vendor
WordPress
- Vendor
- CVE Published:
- 26 June 2023
What is CVE-2023-28991?
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in PI Websolution Order date, Order pickup, Order date time, Pickup Location, delivery date for WooCommerce plugin <=Â 3.0.19 versions.
Affected Version(s)
Order date, Order pickup, Order date time, Pickup Location, delivery date for WooCommerce <= 3.0.19