CVE-2022-2099

Summary

The WooCommerce WordPress plugin before 6.6.0 is vulnerable to stored HTML injection due to lack of escaping and sanitizing in the payment gateway titles

Affected Software

VendorProductVersion RangeStatus
UnknownWooCommerce0 < 6.6.0affected

Weaknesses

  • CWE-116 Improper Encoding or Escaping of Output

ADP Enrichment

CVE Program Container

Additional References

References