Vulnerabilities > CVE-2023-29170 - Unspecified vulnerability in Piwebsolution Product Enquiry for Woocommerce 2.2.7

CVSS 4.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

piwebsolution

NVD

Published: 2023-04-07

Updated: 2024-11-21

Summary

Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in PI Websolution Product Enquiry for WooCommerce, WooCommerce product catalog plugin <= 2.2.12 versions.

Vulnerable Configurations

Part	Description	Count
Application	Piwebsolution Piwebsolution Product Enquiry FOR Woocommerce - Piwebsolution Product Enquiry FOR Woocommerce 2.2.7	2

References

https://patchstack.com/database/vulnerability/enquiry-quotation-for-woocommerce/wordpress-product-enquiry-for-woocommerce-plugin-2-2-12-cross-site-scripting-xss-vulnerability?_s_id=cve
https://patchstack.com/database/vulnerability/enquiry-quotation-for-woocommerce/wordpress-product-enquiry-for-woocommerce-plugin-2-2-12-cross-site-scripting-xss-vulnerability?_s_id=cve