Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Weboccult Technologies Pvt Ltd Email Attachment by Order Status & Products email-attachment-by-order-status-products allows Reflected XSS.This issue affects Email Attachment by Order Status & Products: from n/a through <= 1.0.1.
Metrics
Affected Vendors & Products
Advisories
No advisories yet.
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Wed, 22 Oct 2025 14:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Weboccult Technologies Pvt Ltd Email Attachment by Order Status & Products email-attachment-by-order-status-products allows Reflected XSS.This issue affects Email Attachment by Order Status & Products: from n/a through <= 1.0.1. | |
Title | WordPress Email Attachment by Order Status & Products Plugin <= 1.0.1 - Cross Site Scripting (XSS) Vulnerability | |
Weaknesses | CWE-79 | |
References |
|

Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2025-10-22T14:32:20.403Z
Reserved: 2025-06-11T16:07:34.181Z
Link: CVE-2025-49957

No data.

Status : Awaiting Analysis
Published: 2025-10-22T15:15:42.270
Modified: 2025-10-22T21:12:32.330
Link: CVE-2025-49957

No data.

No data.