CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Gravitymaster: >> Product Enquiry For Woocommerce >> 3.1 Security Vulnerabilities

CVE-2023-7151

The Product Enquiry for WooCommerce WordPress plugin before 3.2 does not sanitise and escape the page parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin

CVSS Score

6.1

EPSS Score

0.003

Published

2024-01-16

Page 1

Vulnerabilities

Vulnerable Software

Gravitymaster: >> Product Enquiry For Woocommerce >> 3.1 Security Vulnerabilities

Products

Pricing

Contact Us