The WooCommerce PDF Invoices & Packing Slips WordPress plugin prior to 2.16.0 doesn't escape a parameter on its setting page, making it possible for malicious users to conduct reflected cross-site scripting attacks.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wpovernight woocommerce pdf invoices\\& packing slips |