WordPress WooCommerce Green Wallet Gateway plugin <= 1.0.1 - Reflected Cross-Site Scripting (XSS) vulnerability

greenwallet-gateway

Software

WooCommerce Green Wallet Gateway

Vulnerable Versions

<= 1.0.1

Fixed in version

1.0.2

CVE

CVE-2022-1673

References

CVE-2022-1673
Vulnerability details
Plugin changelog

Credits

goodguyandy

Classification

Cross Site Scripting (XSS)

OWASP Top 10

A7: Cross-Site Scripting (XSS)

Disclosure Date

2022-05-11

CVSS 3.0 score

6.1

Medium

Are your websites subject to this vulnerability?

Details

Reflected Cross-Site Scripting (XSS) vulnerability discovered by goodguyandy in WordPress WooCommerce Green Wallet Gateway plugin (versions <= 1.0.1).

Solution

Update the WordPress WooCommerce Green Wallet Gateway plugin to the latest available version (at least 1.0.2).

Found a vulnerability that puts your sites at risk?

Found a vulnerability? Help us secure the web and join our community of ethical hackers.

Are you the developer of this software? Hire our researchers for a thorough security audit.

Vulnerability Database

WordPress WooCommerce Green Wallet Gateway plugin <= 1.0.1 - Reflected Cross-Site Scripting (XSS) vulnerability

greenwallet-gateway

Software

WooCommerce Green Wallet Gateway

Vulnerable Versions

<= 1.0.1

Fixed in version

1.0.2

CVE

CVE-2022-1673

References

CVE-2022-1673
Vulnerability details
Plugin changelog

Credits

goodguyandy

Classification

Cross Site Scripting (XSS)

OWASP Top 10

A7: Cross-Site Scripting (XSS)

Disclosure Date

2022-05-11

CVSS 3.0 score

6.1

Plugin does not exist, is not supported or discontinued.

Are your websites subject to this vulnerability?

Details

Reflected Cross-Site Scripting (XSS) vulnerability discovered by goodguyandy in WordPress WooCommerce Green Wallet Gateway plugin (versions <= 1.0.1).

Solution

Update the WordPress WooCommerce Green Wallet Gateway plugin to the latest available version (at least 1.0.2).

Found a vulnerability that puts your sites at risk?

Found a vulnerability? Help us secure the web and join our community of ethical hackers.

Are you the developer of this software? Hire our researchers for a thorough security audit.

Solutions

Patchstack

© 2022 Patchstack

© 2021 Patchstack

Vulnerability Database

WordPress WooCommerce Green Wallet Gateway plugin <= 1.0.1 - Reflected Cross-Site Scripting (XSS) vulnerability

greenwallet-gateway

Software

WooCommerce Green Wallet Gateway

Vulnerable Versions

<= 1.0.1

Fixed in version

1.0.2

CVE

CVE-2022-1673

References

CVE-2022-1673 Vulnerability details Plugin changelog

Credits

goodguyandy

Classification

Cross Site Scripting (XSS)

OWASP Top 10

A7: Cross-Site Scripting (XSS)

Disclosure Date

2022-05-11

CVSS 3.0 score

6.1

Plugin does not exist, is not supported or discontinued.

Are your websites subject to this vulnerability?

Details

Reflected Cross-Site Scripting (XSS) vulnerability discovered by goodguyandy in WordPress WooCommerce Green Wallet Gateway plugin (versions <= 1.0.1).

Solution

Update the WordPress WooCommerce Green Wallet Gateway plugin to the latest available version (at least 1.0.2).

Found a vulnerability that puts your sites at risk?

Found a vulnerability? Help us secure the web and join our community of ethical hackers.

Are you the developer of this software? Hire our researchers for a thorough security audit.

Solutions

Patchstack

© 2022 Patchstack

© 2021 Patchstack

CVE-2022-1673
Vulnerability details
Plugin changelog