Vulnerabilities > Technocrackers

DATE CVE VULNERABILITY TITLE RISK
2023-03-22 CVE-2023-28665 Cross-site Scripting vulnerability in Technocrackers Bulk Price Update for Woocommerce
The Woo Bulk Price Update WordPress plugin, in versions < 2.2.2, is affected by a reflected cross-site scripting vulnerability in the 'page' parameter to the techno_get_products action, which can only be triggered by an authenticated user.
network
low complexity
technocrackers CWE-79
5.4