Vulnerabilities (CVE)

Filtered by vendor Computy Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-5140 1 Computy 1 Bonus For Woo 2024-02-28 N/A 6.1 MEDIUM
The Bonus for Woo WordPress plugin before 5.8.3 does not sanitise and escape some parameters before outputting them back in pages, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin.