Booster for WooCommerce Reflected XSS Vulnerability (<=7.2.3)

From this webpage screenshot, the following key vulnerability information can be obtained: 1. Vulnerability Name: Booster for WooCommerce <= 7.2.3 - Reflected Cross-Site Scripting 2. Vulnerability Type: Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) 3. CVSS Score: 6.1 (Medium) 4. Public Release Date: November 19, 2024 5. Update Date: November 20, 2024 6. Researcher: vgo0 7. Fixed Status: Yes 8. Affected Versions: <= 7.2.3 9. Fixed Version: 7.2.4 10. Vulnerability Description: The Booster for WooCommerce plugin for WordPress contains a reflected Cross-Site Scripting (XSS) vulnerability, caused by the use of and functions in URLs, without proper escaping of input in all versions (including 7.2.3). 11. Reference Link: plugins.trac.wordpress.org 12. Vulnerability Database: Wordfence Intelligence Vulnerability Database 13. Vulnerability Rating: Medium (6.1) 14. Public Release Date: November 19, 2024 15. Update Date: November 20, 2024 16. Researcher: vgo0 17. Fixed Status: Yes 18. Affected Versions: <= 7.2.3 19. Fixed Version: 7.2.4 20. Vulnerability Description: The Booster for WooCommerce plugin for WordPress contains a reflected Cross-Site Scripting (XSS) vulnerability, caused by the use of and functions in URLs, without proper escaping of input in all versions (including 7.2.3). 21. Reference Link: plugins.trac.wordpress.org 22. Vulnerability Database: Wordfence Intelligence Vulnerability Database 23. Vulnerability Rating: Medium (6.1) 24. Public Release Date: November 19, 2024 25. Update Date: November 20, 2024 26. Researcher: vgo0 27. Fixed Status: Yes 28. Affected Versions: <= 7.2.3 29. Fixed Version: 7.2.4 30. Vulnerability Description: The Booster for WooCommerce plugin for WordPress contains a reflected Cross-Site Scripting (XSS) vulnerability, caused by the use of and functions in URLs, without proper escaping of input in all versions (including 7.2.3). 31. Reference Link: plugins.trac.wordpress.org 32. Vulnerability Database: Wordfence Intelligence Vulnerability Database 33. Vulnerability Rating: Medium (6.1) 34. Public Release Date: November 19, 2024 35. Update Date: November 20, 2024 36. Researcher: vgo0 37. Fixed Status: Yes 38. Affected Versions: <= 7.2.3 39. Fixed Version: 7.2.4 40. Vulnerability Description: The Booster for WooCommerce plugin for WordPress contains a reflected Cross-Site Scripting (XSS) vulnerability, caused by the use of and functions in URLs, without proper escaping of input in all versions (including 7.2.3). 41. Reference Link: plugins.trac.wordpress.org 42. Vulnerability Database: Wordfence Intelligence Vulnerability Database 43. Vulnerability Rating: Medium (6.1) 44. Public Release Date: November 19, 2024 45. Update Date: November 20, 2024 46. Researcher: vgo0 47. Fixed Status: Yes 48. Affected Versions: <= 7.2.3 49. Fixed Version: 7.2.4 50. Vulnerability Description: The Booster for WooCommerce plugin for WordPress contains a reflected Cross-Site Scripting (XSS) vulnerability, caused by the use of and functions in URLs, without proper escaping of input in all versions (including 7.2.3). 51. Reference Link: plugins.trac.wordpress.org 52. Vulnerability Database: Wordfence Intelligence Vulnerability Database 53. Vulnerability Rating: Medium (6.1) 54. Public Release Date: November 19, 2024 55. Update Date: November 20, 2024 56. Researcher: vgo0 57. Fixed Status: Yes 58. Affected Versions: <= 7.2.3 59. Fixed Version: 7.2.4 60. Vulnerability Description: The Booster for WooCommerce plugin for WordPress contains a reflected Cross-Site Scripting (XSS) vulnerability, caused by the use of and functions in URLs, without proper escaping of input in all versions (including 7.2.3). 61. Reference Link: plugins.trac.wordpress.org 62. Vulnerability Database: Wordfence Intelligence Vulnerability Database 63. Vulnerability Rating: Medium (6.1) 64. Public Release Date: November 19, 2024 65. Update Date: November 20, 2024 66. Researcher: vgo0 67. Fixed Status: Yes 68. Affected Versions: <= 7.2.3 69. Fixed Version: 7.2.4 70. Vulnerability Description: The Booster for WooCommerce plugin for WordPress contains a reflected Cross-Site Scripting (XSS) vulnerability, caused by the use of and functions in URLs, without proper escaping of input in all versions (including 7.2.3). 71. Reference Link: plugins.trac.wordpress.org 72. Vulnerability Database: Wordfence Intelligence Vulnerability Database 73. Vulnerability Rating: Medium (6.1) 74. Public Release Date: November 19, 2024 75. Update Date: November 20, 2024 76. Researcher: vgo0 77. Fixed Status: Yes 78. Affected Versions: <= 7.2.3 79. Fixed Version: 7.2.4 80. Vulnerability Description: The Booster for WooCommerce plugin for WordPress contains a reflected Cross-Site Scripting (XSS) vulnerability, caused by the use of and functions in URLs, without proper escaping of input in all versions (including 7.2.3). 81. Reference Link: plugins.trac.wordpress.org 82. Vulnerability Database: Wordfence Intelligence Vulnerabil

Goal Reached Thanks to every supporter — we hit 100%!

Booster for WooCommerce Reflected XSS Vulnerability (<=7.2.3)

More from this source