Filtered by vendor Multidots
Subscriptions
Filtered by product Woocommerce Quick Reports
Subscriptions
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2018-11485 | 1 Multidots | 1 Woocommerce Quick Reports | 2024-08-05 | N/A |
| The MULTIDOTS WooCommerce Quick Reports plugin 1.0.6 and earlier for WordPress is vulnerable to Stored XSS. It allows an attacker to inject malicious JavaScript code on the WooCommerce -> Orders admin page. The attack is possible by modifying the "referral_site" cookie to have an XSS payload, and placing an order. | ||||
Page 1 of 1.