The Woo Bulk Price Update WordPress plugin, in versions < 2.2.2, is affected by a reflected cross-site scripting vulnerability in the 'page' parameter to the techno_get_products action, which can only be triggered by an authenticated user.
CVSS
No CVSS.
References
Link | Resource |
---|---|
https://www.tenable.com/security/research/tra-2023-3 |
Configurations
No configuration.
Information
Published : 2023-03-22 14:15
Updated : 2023-03-22 14:15
NVD link : CVE-2023-28665
Mitre link : CVE-2023-28665
JSON object : View
CWE
No CWE.
Products Affected
No product.