The XT Ajax Add To Cart for WooCommerce plugin for WordPress has a security vulnerability that allows attackers to inject harmful scripts into web pages. This can happen if a user clicks on a link and the attacker is able to trick them into performing an action. This vulnerability is present in all versions up to and including 1.1.2.