CVE-2024-54333
CVSS 3.1 Score 7.1 of 10 (high)
Details
Published Dec 13, 2024
CWE ID 79
Summary
CVE-2024-54333 represents a Cross-site Scripting (XSS) vulnerability in the Check Pincode For Woocommerce plugin. This issue allows attackers to inject malicious scripts into a webpage, potentially stealing user data or taking control of their sessions. The flaw is located within the plugin's input neutralization process during webpage generation. This vulnerability affects Check Pincode For Woocommerce versions from n/a through 1.1. Users are urged to update the plugin or consider alternative security measures to mitigate the risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share