Woocommerce: >> Subscriptions >> 1.5.26 Security Vulnerabilities
Persistent XSS in the WooCommerce Subscriptions plugin before 2.6.3 for WordPress allows remote attackers to execute arbitrary JavaScript because Billing Details are mishandled in WCS_Admin_Post_Types in class-wcs-admin-post-types.php.
CVSS Score
6.1
EPSS Score
0.005
Published
2020-07-23