Vulnerability Details CVE-2022-46864
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Umair Saleem Woocommerce Custom Checkout Fields Editor With Drag & Drop plugin <= 0.1 versions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 26.6%
CVSS Severity
CVSS v3 Score 7.1
References
- https://patchstack.com/database/vulnerability/woo-custom-checkout-fields/wordpress-woocommerce-custom-checkout-fields-editor-with-drag-drop-plugin-0-1-cross-site-scripting-xss?_s_id=cve
- https://patchstack.com/database/vulnerability/woo-custom-checkout-fields/wordpress-woocommerce-custom-checkout-fields-editor-with-drag-drop-plugin-0-1-cross-site-scripting-xss?_s_id=cve
Products affected by CVE-2022-46864
-
Woocommerce Custom Checkout Fields Editor With Drag & Drop Project » Woocommerce Custom Checkout Fields Editor With Drag & Drop » Version: 0.1cpe:2.3:a:woocommerce_custom_checkout_fields_editor_with_drag_&_drop_project:woocommerce_custom_checkout_fields_editor_with_drag_&_drop:0.1