Vulnerabilities > Wpfactory > Maximum Products PER User FOR Woocommerce > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-10-10 CVE-2024-9205 Cross-site Scripting vulnerability in Wpfactory Maximum products PER User for Woocommerce
The Maximum Products per User for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 4.2.8.
network
low complexity
wpfactory CWE-79
6.1