Log out
Get PRO

Latest

Input validation vulnerability in Booster for WooCommerce 7.2.5

  • Severity: high-risk
  • Status: Fixed
  • Publication: March 31, 2025

The Booster for WooCommerce plugin on WordPress has a security issue called Stored Cross-Site Scripting. This can happen when data is not properly checked before being displayed, such as in comments. It affects all versions up to 7.2.5 and allows attackers to insert harmful web scripts into pages that will run whenever someone visits the affected page.

Detected in:

Booster for WooCommerce fixed vulnerable versions: >= * <= 7.2.4
Booster for WooCommerce – PDF Invoices, Abandoned Cart, Variation Swatches & 100+ Tools fixed vulnerable versions:
Booster for WooCommerce – PDF Invoices, Bulk Price Editor, Currency Switcher & 100+ Tools fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.