Skip to main content

Wp Express Checkout

1 CVEs product

Monthly

CVE-2023-1469 MEDIUM PATCH This Month

The WP Express Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘pec_coupon[code]’ parameter in versions up to, and including, 2.2.8 due to insufficient input. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity.

WordPress XSS Wp Express Checkout
NVD
CVSS 3.1
4.8
EPSS
0.4%
EPSS 0% CVSS 4.8
MEDIUM PATCH This Month

The WP Express Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘pec_coupon[code]’ parameter in versions up to, and including, 2.2.8 due to insufficient input. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity.

WordPress XSS Wp Express Checkout
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy