Skip to main content

Yotpo

1 CVEs product

Monthly

CVE-2024-9356 MEDIUM This Month

The Yotpo: Product & Photo Reviews for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'yotpo_user_email' and 'yotpo_user_name' parameters in all versions up. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress XSS Yotpo
NVD
CVSS 3.1
6.1
EPSS
1.1%
EPSS 1% CVSS 6.1
MEDIUM This Month

The Yotpo: Product & Photo Reviews for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'yotpo_user_email' and 'yotpo_user_name' parameters in all versions up. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress XSS Yotpo
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy