Log out
Get PRO

Latest

Input validation vulnerability in WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting 1.13.2

  • Severity: medium-risk
  • Status: Open
  • Publication: October 21, 2024

The WP ERP plugin for WordPress has a security issue that makes it vulnerable to a type of attack called Reflected Cross-Site Scripting. This can happen in versions 1.13.2 and earlier because the plugin does not properly clean up or protect against harmful code. This means that someone who is not logged in to your website could potentially insert harmful code into a page, by tricking you into clicking on a link.

Detected in:

WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting open vulnerable versions: >= * <= 1.13.2

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.