Log out
Get PRO

Latest

Input validation vulnerability in Booster for WooCommerce 7.1.2

  • Severity: medium-risk
  • Status: Fixed
  • Publication: October 18, 2023

The Booster for WooCommerce plugin for WordPress has a security vulnerability that could allow an attacker to inject malicious scripts into pages. If an attacker was able to gain access to the website with contributor-level or higher permissions, they could use the vulnerability to inject these scripts that would run every time someone visits the affected page. The vulnerability affects version 7.1.2 and all previous versions of the plugin.

Detected in:

Booster for WooCommerce fixed vulnerable versions: >= * <= 7.1.2
Booster for WooCommerce – PDF Invoices, Abandoned Cart, Variation Swatches & 100+ Tools fixed vulnerable versions:
Booster for WooCommerce – PDF Invoices, Bulk Price Editor, Currency Switcher & 100+ Tools fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.