The plugin used for searching orders on WordPress, called WooCommerce Order Search, has a security issue. This is because it does not properly clean up the information entered and displayed, and it allows harmful scripts to be inserted into web pages. This can be done by anyone, without needing to log in, if they can convince a user to click on a link.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
