Vulnerabilities > Bizswoop > Store Hours FOR Woocommerce

DATE CVE VULNERABILITY TITLE RISK
2024-09-26 CVE-2024-8872 Cross-site Scripting vulnerability in Bizswoop Store Hours for Woocommerce
The Store Hours for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 4.3.20.
network
low complexity
bizswoop CWE-79
6.1