WordPress Laybuy Payment Extension for WooCommerce Plugin <= 5.3.9 is vulnerable to Cross Site Scripting (XSS)
CVE-2024-21745
6.5MEDIUM
Key Information:
- Vendor
WordPress
- Vendor
- CVE Published:
- 8 January 2024
What is CVE-2024-21745?
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Laybuy Laybuy Payment Extension for WooCommerce allows Stored XSS.This issue affects Laybuy Payment Extension for WooCommerce: from n/a through 5.3.9.
Affected Version(s)
Laybuy Payment Extension for WooCommerce <= 5.3.9