The WP Shop plugin for WordPress is vulnerable to security risks. Versions 3.4.3.18 and earlier of the plugin are affected. If someone were to click a malicious link, it could allow unwanted scripts to be injected into pages, which could cause harm. This is due to the plugin missing input sanitization, output escaping, and nonce validation.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
