Vulnerabilities > Artisanworkshop
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-08 | CVE-2023-0948 | Cross-site Scripting vulnerability in Artisanworkshop Japanized for Woocommerce The Japanized For WooCommerce WordPress plugin before 2.5.8 does not escape generated URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting | 6.1 |
| 2023-02-21 | CVE-2023-0942 | Unspecified vulnerability in Artisanworkshop Japanized for Woocommerce The Japanized For WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘tab’ parameter in versions up to, and including, 2.5.4 due to insufficient input sanitization and output escaping. | 6.1 |