Unrated severityNVD Advisory· Published Aug 1, 2024· Updated Apr 28, 2026
WordPress WooCommerce PDF Vouchers plugin < 4.9.5 - Reflected Cross Site Scripting (XSS) vulnerability
CVE-2024-39652
Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPWeb Elite WooCommerce PDF Vouchers allows Reflected XSS.This issue affects WooCommerce PDF Vouchers: from n/a before 4.9.5.
Affected products
2- Range: < 4.9.5
- WPWeb Elite/WooCommerce PDF Vouchersv5Range: n/a
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.