Unrated severityNVD Advisory· Published May 28, 2023· Updated Apr 28, 2026
WordPress WooCommerce Product Vendors Plugin <= 2.1.76 is vulnerable to Cross Site Scripting (XSS)
CVE-2023-33332
Description
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WooCommerce Product Vendors plugin <= 2.1.76 versions.
Affected products
2- Range: <=2.1.76
- WooCommerce/WooCommerce Product Vendorsv5Range: n/a
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.