Global CyberSecurity

Cross Site Scripting in YITH WooCommerce Ajax Product Filter

0

Published on 06/22/2020 – Last Updated on 06/22/2020 by OTC

During a routine research audit for our Sucuri Web Application Firewall, we discovered a cross-site scripting (XSS) vulnerability affecting 100,000+ users of the YITH WooCommerce Ajax Product Filter  plugin.

Current State of the Vulnerability

This security bug was fixed in the 3.11.1 release. We are not aware of any exploit attempts currently using this vulnerability.

Disclosure / Response Timeline

  • Jun 4, 2020: Initial contact.
  • Jun 22, 2020: Patch is live.

Continue reading Cross Site Scripting in YITH WooCommerce Ajax Product Filter at Sucuri Blog.

General Dynamics seals a contract for Columbia&Dreadnought Class SSBN Fire Control Systems

Previous article

U.S. Navy first operational CMV-22B arrives at Naval Air Station North Island

Next article

You may also like

Comments

Comments are closed.