← All advisories

Unrated severityNVD Advisory· Published Aug 30, 2023· Updated Apr 28, 2026

WordPress WooCommerce Composite Products Plugin <= 8.7.5 is vulnerable to Cross Site Scripting (XSS)

CVE-2023-32801

Description

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WooCommerce Composite Products plugin <= 8.7.5 versions.

Affected products

2

WordPress/WooCommerce Composite Productsllm-create
Range: <=8.7.5
WooCommerce/Composite Productsv5
Range: n/a

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

patchstack.com/database/vulnerability/woocommerce-composite-products/wordpress-woocommerce-composite-products-plugin-8-7-5-reflected-cross-site-scripting-xss-vulnerabilitymitrevdb-entry

News mentions

0

No linked articles in our index yet.