← Back to CVE List

CVE-2023-5348

Published: 2023-12-18T20:15Z
Last Modified: 2024-11-21T08:41Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
The Product Catalog Mode For WooCommerce WordPress plugin before 5.0.3 does not properly authorize settings updates or escape settings values, leading to stored XSS by unauthenticated users. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt