| CVE编号 | CVE-2025-1363 |
|---|---|
| 发布日期 | 2025-03-09T06:00:04.772Z |
| 更新日期 | 2025-03-12T19:26:18.806Z |
| 状态 | PUBLISHED |
| 受影响的供应商 | Unknown |
| 受影响的产品 | URL Shortener | Conversion Tracking | AB Testing | WooCommerce |
| 描述 | The URL Shortener | Conversion Tracking | AB Testing | WooCommerce WordPress plugin through 9.0.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup). |
参考链接:
