CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-2090

The Discount Rules for WooCommerce WordPress plugin before 2.4.2 does not escape a parameter before outputting it back in an attribute of the plugin's discount rule page, leading to Reflected Cross-Site Scripting

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 42.4%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://wpscan.com/vulnerability/0201f365-7acb-4640-bd3f-7119432f4917
https://wpscan.com/vulnerability/0201f365-7acb-4640-bd3f-7119432f4917

Products affected by CVE-2022-2090

Flycart » Discount Rules For Woocommerce » Version: N/A

cpe:2.3:a:flycart:discount_rules_for_woocommerce:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-2090

Products

Pricing

Contact Us