CVE-2022-2099
N/A
N/A
Summary
The WooCommerce WordPress plugin before 6.6.0 is vulnerable to stored HTML injection due to lack of escaping and sanitizing in the payment gateway titles
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Unknown | WooCommerce | 0 < 6.6.0 | affected |
Weaknesses
- CWE-116 Improper Encoding or Escaping of Output
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.