Assigner | Patchstack |
Reserved | 2024-05-17 |
Published | 2024-06-10 |
Updated | 2024-06-10 |
Description
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in YITH YITH WooCommerce Product Add-Ons allows Code Injection.This issue affects YITH WooCommerce Product Add-Ons: from n/a through 4.9.2.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N |
Problem types
Product status
Any version
Credits
Savphill (Patchstack Alliance)