Ausnahme gefangen: SSL certificate problem: certificate is not yet valid ๐Ÿ“Œ XSS in metabox customer note field
Team IT Security Nachrichtenportal Logo

๐Ÿ  Team IT Security News

TSecurity.de ist eine Online-Plattform, die sich auf die Bereitstellung von Informationen,alle 15 Minuten neuste Nachrichten, Bildungsressourcen und Dienstleistungen rund um das Thema IT-Sicherheit spezialisiert hat.
Ob es sich um aktuelle Nachrichten, Fachartikel, Blogbeitrรคge, Webinare, Tutorials, oder Tipps & Tricks handelt, TSecurity.de bietet seinen Nutzern einen umfassenden รœberblick รผber die wichtigsten Aspekte der IT-Sicherheit in einer sich stรคndig verรคndernden digitalen Welt.

16.12.2023 - TIP: Wer den Cookie Consent Banner akzeptiert, kann z.B. von Englisch nach Deutsch รผbersetzen, erst Englisch auswรคhlen dann wieder Deutsch!

Google Android Playstore Download Button fรผr Team IT Security
RSS Feed Symbol fรผr Team IT Security 800+ IT News als RSS Feed abonnieren



๐Ÿ“š XSS in metabox customer note field


๐Ÿ’ก Newskategorie: Sicherheitslรผcken
๐Ÿ”— Quelle: portal.patchman.co

Some variables in the customer note field are not properly escaped to prevent an XSS attack.

This vulnerability affects the following application versions:

  • WooCommerce 3.3.0
  • WooCommerce 3.3.0-rc.1
  • WooCommerce 3.3.0-rc.2
  • WooCommerce 3.3.1
  • WooCommerce 3.3.1-rc.1
  • WooCommerce 3.3.2
  • WooCommerce 3.3.2-rc.1
  • WooCommerce 3.3.3
  • WooCommerce 3.3.4
  • WooCommerce 3.3.5
  • WooCommerce 3.3.6
  • WooCommerce 3.4.0
  • WooCommerce 3.4.0-beta.1
  • WooCommerce 3.4.0-rc.1
  • WooCommerce 3.4.0-rc.2
  • WooCommerce 3.4.1
  • WooCommerce 3.4.2
  • WooCommerce 3.4.3
  • WooCommerce 3.4.4
  • WooCommerce 3.4.5
  • WooCommerce 3.4.6
  • WooCommerce 3.4.7
  • WooCommerce 3.4.8
  • WooCommerce 3.5.0
  • WooCommerce 3.5.0-beta.1
  • WooCommerce 3.5.0-rc.1
  • WooCommerce 3.5.0-rc.2
  • WooCommerce 3.5.1
  • WooCommerce 3.5.2
  • WooCommerce 3.5.3
  • WooCommerce 3.5.4
  • WooCommerce 3.5.5
  • WooCommerce 3.5.6
  • WooCommerce 3.5.7
  • WooCommerce 3.5.8
  • WooCommerce 3.5.9
  • WooCommerce 3.5.10
  • WooCommerce 3.6.0
  • WooCommerce 3.6.0-beta.1
  • WooCommerce 3.6.0-rc.1
  • WooCommerce 3.6.0-rc.2
  • WooCommerce 3.6.0-rc.3
  • WooCommerce 3.6.1
  • WooCommerce 3.6.2
  • WooCommerce 3.6.3
  • WooCommerce 3.6.4
  • WooCommerce 3.6.5
  • WooCommerce 3.6.6
  • WooCommerce 3.6.7
  • WooCommerce 3.7.0
  • WooCommerce 3.7.0-beta.1
  • WooCommerce 3.7.0-rc.1
  • WooCommerce 3.7.0-rc.2
  • WooCommerce 3.7.1
  • WooCommerce 3.7.2
  • WooCommerce 3.7.3
  • WooCommerce 3.8.0
  • WooCommerce 3.8.0-beta.1
  • WooCommerce 3.8.0-rc.1
  • WooCommerce 3.8.0-rc.2
  • WooCommerce 3.8.1
  • WooCommerce 3.8.2
  • WooCommerce 3.8.3
  • WooCommerce 3.9.0
  • WooCommerce 3.9.0-beta.1
  • WooCommerce 3.9.0-beta.2
  • WooCommerce 3.9.0-rc.1
  • WooCommerce 3.9.0-rc.2
  • WooCommerce 3.9.0-rc.3
  • WooCommerce 3.9.0-rc.4
  • WooCommerce 3.9.1
  • WooCommerce 3.9.2
  • WooCommerce 3.9.3
  • WooCommerce 3.9.4
  • WooCommerce 3.9.5
  • WooCommerce 4.0.0
  • WooCommerce 4.0.0-beta.1
  • WooCommerce 4.0.0-rc.1
  • WooCommerce 4.0.0-rc.2
  • WooCommerce 4.0.1
  • WooCommerce 4.0.2
  • WooCommerce 4.0.3
  • WooCommerce 4.0.4
  • WooCommerce 4.1.0
  • WooCommerce 4.1.0-beta.1
  • WooCommerce 4.1.0-beta.2
  • WooCommerce 4.1.0-rc.1
  • WooCommerce 4.1.0-rc.2
  • WooCommerce 4.1.0-rc.3
  • WooCommerce 4.1.1
  • WooCommerce 4.1.2
  • WooCommerce 4.1.2.1
  • WooCommerce 4.1.3
  • WooCommerce 4.1.4
  • WooCommerce 4.2.0
  • WooCommerce 4.2.0-beta.1
  • WooCommerce 4.2.0-RC.1
  • WooCommerce 4.2.0-RC.2
  • WooCommerce 4.2.1
  • WooCommerce 4.2.2
  • WooCommerce 4.2.3
  • WooCommerce 4.2.3.1
  • WooCommerce 4.2.4
  • WooCommerce 4.2.5
  • WooCommerce 4.3.0
  • WooCommerce 4.3.0-beta.1
  • WooCommerce 4.3.0-rc.1
  • WooCommerce 4.3.0-rc.2
  • WooCommerce 4.3.0-rc.3
  • WooCommerce 4.3.1
  • WooCommerce 4.3.2
  • WooCommerce 4.3.3
  • WooCommerce 4.3.4
  • WooCommerce 4.3.4.1
  • WooCommerce 4.3.5
  • WooCommerce 4.3.6
  • WooCommerce 4.4.0
  • WooCommerce 4.4.0-beta.1
  • WooCommerce 4.4.0-rc.1
  • WooCommerce 4.4.1
  • WooCommerce 4.4.2
  • WooCommerce 4.4.2.1
  • WooCommerce 4.4.3
  • WooCommerce 4.4.4
  • WooCommerce 4.5.0
  • WooCommerce 4.5.0-beta.1
  • WooCommerce 4.5.0-rc.1
  • WooCommerce 4.5.0-rc.2
  • WooCommerce 4.5.0-rc.3
  • WooCommerce 4.5.1
  • WooCommerce 4.5.2
  • WooCommerce 4.5.3
  • WooCommerce 4.5.3.1
  • WooCommerce 4.5.4
  • WooCommerce 4.5.5
  • WooCommerce 4.6.0
  • WooCommerce 4.6.0-beta.1
  • WooCommerce 4.6.0-rc.1
  • WooCommerce 4.6.1
  • WooCommerce 4.6.2
  • WooCommerce 4.6.3
  • WooCommerce 4.6.3.1
  • WooCommerce 4.6.4
  • WooCommerce 4.6.5
  • WooCommerce 4.7.0
  • WooCommerce 4.7.0-beta.1
  • WooCommerce 4.7.0-beta.2
  • WooCommerce 4.7.0-rc.1
  • WooCommerce 4.7.1
  • WooCommerce 4.7.1-beta.1
  • WooCommerce 4.7.2
  • WooCommerce 4.7.3
  • WooCommerce 4.7.4
  • WooCommerce 4.8.0
  • WooCommerce 4.8.0-beta.1
  • WooCommerce 4.8.0-rc.1
  • WooCommerce 4.8.0-rc.2
  • WooCommerce 4.8.1
  • WooCommerce 4.8.2
  • WooCommerce 4.8.3
  • WooCommerce 4.9.0
  • WooCommerce 4.9.0-beta.1
  • WooCommerce 4.9.0-rc.1
  • WooCommerce 4.9.0-rc.2
  • WooCommerce 4.9.1
  • WooCommerce 4.9.2
  • WooCommerce 4.9.3
  • WooCommerce 4.9.4
  • WooCommerce 4.9.5
  • WooCommerce 5.0.0
  • WooCommerce 5.0.0-beta.1
  • WooCommerce 5.0.0-beta.2
  • WooCommerce 5.0.0-rc.1
  • WooCommerce 5.0.0-rc.2
  • WooCommerce 5.0.0-rc.3
  • WooCommerce 5.0.1
  • WooCommerce 5.0.2
  • WooCommerce 5.0.3
  • WooCommerce 5.1.0
  • WooCommerce 5.1.0-beta.1
  • WooCommerce 5.1.0-rc.1
  • WooCommerce 5.1.1
  • WooCommerce 5.1.2
  • WooCommerce 5.1.3
  • WooCommerce 5.2.0
  • WooCommerce 5.2.0-beta.1
  • WooCommerce 5.2.0-rc.1
  • WooCommerce 5.2.0-rc.2
  • WooCommerce 5.2.1
  • WooCommerce 5.2.2
  • WooCommerce 5.2.3
  • WooCommerce 5.2.4
  • WooCommerce 5.2.5
  • WooCommerce 5.3.0
  • WooCommerce 5.3.0-beta.1
  • WooCommerce 5.3.0-rc.1
  • WooCommerce 5.3.0-rc.2
  • WooCommerce 5.3.1
  • WooCommerce 5.3.2
  • WooCommerce 5.3.3
  • WooCommerce 5.4.0
  • WooCommerce 5.4.0-beta.1
  • WooCommerce 5.4.0-rc.1
  • WooCommerce 5.4.1
  • WooCommerce 5.4.2
  • WooCommerce 5.4.3
  • WooCommerce 5.4.4
  • WooCommerce 5.5.0
  • WooCommerce 5.5.0-beta.1
  • WooCommerce 5.5.0-rc.1
  • WooCommerce 5.5.0-rc.2
  • WooCommerce 5.5.1
  • WooCommerce 5.5.2
  • WooCommerce 5.5.3
  • WooCommerce 5.5.4
  • WooCommerce 5.6.0
  • WooCommerce 5.6.0-beta.1
  • WooCommerce 5.6.0-rc.1
  • WooCommerce 5.6.0-rc.2
  • WooCommerce 5.6.1
  • WooCommerce 5.6.2
  • WooCommerce 5.7.0
  • WooCommerce 5.7.0-beta.1
  • WooCommerce 5.7.0-rc.1
  • WooCommerce 5.7.0-rc.2
  • WooCommerce 5.7.1
  • WooCommerce 5.7.2
  • WooCommerce 5.8.0
  • WooCommerce 5.8.0-beta.1
  • WooCommerce 5.8.0-beta.2
  • WooCommerce 5.8.0-rc.1
  • WooCommerce 5.8.1
  • WooCommerce 5.9.0
  • WooCommerce 5.9.0-beta.1
  • WooCommerce 5.9.0-rc.1
  • WooCommerce 5.9.0-RC.1
  • WooCommerce 5.9.0-rc.2
  • WooCommerce 5.9.1
  • WooCommerce 6.0.0
  • WooCommerce 6.0.0-beta.1
  • WooCommerce 6.0.0-rc.1
  • WooCommerce 6.0.1
  • WooCommerce 6.1.0
  • WooCommerce 6.1.0-beta.1
  • WooCommerce 6.1.0-rc.1
  • WooCommerce 6.1.0-rc.2
  • WooCommerce 6.1.1
  • WooCommerce 6.1.2
  • WooCommerce 6.2.0
  • WooCommerce 6.2.0-beta.1
  • WooCommerce 6.2.0-rc.1
  • WooCommerce 6.2.0-rc.2
  • WooCommerce 6.2.1
  • WooCommerce 6.2.2
  • WooCommerce 6.3.0
  • WooCommerce 6.3.0-beta.1
  • WooCommerce 6.3.0-rc.1
  • WooCommerce 6.3.0-rc.2
  • WooCommerce 6.3.1
  • WooCommerce 6.4.0
  • WooCommerce 6.4.0-beta.1
  • WooCommerce 6.4.0-rc.1
  • WooCommerce 6.4.1
  • WooCommerce 6.5.0
  • WooCommerce 6.5.0-beta.1
  • WooCommerce 6.5.0-rc.1
  • WooCommerce 6.5.0-rc.2
  • WooCommerce 6.5.1
  • WooCommerce 6.6.0
  • WooCommerce 6.6.0-beta.1
  • WooCommerce 6.6.0-rc.1
  • WooCommerce 6.6.0-rc.2
  • WooCommerce 6.6.1
  • WooCommerce 6.7.0
  • WooCommerce 6.7.0-beta.1
  • WooCommerce 6.7.0-beta.2
  • WooCommerce 6.7.0-rc.1
  • WooCommerce 6.8.0
  • WooCommerce 6.8.0-beta.1
  • WooCommerce 6.8.0-beta.2
  • WooCommerce 6.8.0-rc.1
  • WooCommerce 6.8.1
  • WooCommerce 6.8.2
  • WooCommerce 6.9.0
  • WooCommerce 6.9.0-beta.1
  • WooCommerce 6.9.0-beta.2
  • WooCommerce 6.9.0-rc.1
  • WooCommerce 6.9.1
  • WooCommerce 6.9.2
  • WooCommerce 6.9.3
  • WooCommerce 6.9.4
  • WooCommerce 7.0.0
  • WooCommerce 7.0.0-beta.1
  • WooCommerce 7.0.0-beta.2
  • WooCommerce 7.0.0-beta.3
  • WooCommerce 7.0.0-rc.1
  • WooCommerce 7.0.0-rc.2
  • WooCommerce 7.0.1
  • WooCommerce 7.1.0-beta.1
  • WooCommerce 7.1.0-beta.2
  • WooCommerce 7.1.0-rc.1
  • WooCommerce list
  • WooCommerce nightly
...



Sharing is caring on Social Media

๐Ÿ”— Reddit
๐Ÿ”— Telegram
๐Ÿ”— LinkedIn
๐Ÿ”— Xing
๐Ÿ”— Twitter
๐Ÿ”— Whatsapp
๐Ÿ”— Facebook
๐Ÿ”— Flipboard

Join the Team IT Security Community

๐Ÿ”— "IT Sicherheit" Reddit-Gruppe
๐Ÿ”— "IT Sicherheit" Telegramm-Seite

๐Ÿ“Œ XSS in metabox customer note field


๐Ÿ“ˆ 63.11 Punkte

๐Ÿ“Œ Added escaping to metabox text field to prevent XSS


๐Ÿ“ˆ 47.77 Punkte

๐Ÿ“Œ Escaping collapsible metabox section to prevent XSS


๐Ÿ“ˆ 35.42 Punkte

๐Ÿ“Œ XSS in Metabox


๐Ÿ“ˆ 35.42 Punkte

๐Ÿ“Œ XSS-LOADER - XSS Payload Generator / XSS Scanner / XSS Dork Finder


๐Ÿ“ˆ 29.8 Punkte

๐Ÿ“Œ Medium CVE-2019-14794: Metabox Meta box


๐Ÿ“ˆ 27.97 Punkte

๐Ÿ“Œ Medium CVE-2019-14793: Metabox Meta box


๐Ÿ“ˆ 27.97 Punkte

๐Ÿ“Œ CVE-2023-41876 | Hardik Kalathiya WP Gallery Metabox Plugin up to 1.0.0 on WordPress cross-site request forgery


๐Ÿ“ˆ 27.97 Punkte

๐Ÿ“Œ Additional escaping for general metabox functions


๐Ÿ“ˆ 27.97 Punkte

๐Ÿ“Œ CVE-2023-46191 | Niels van Renselaar Open Graph Metabox Plugin up to 1.4.4 on WordPress cross-site request forgery


๐Ÿ“ˆ 27.97 Punkte

๐Ÿ“Œ Xiaomi-Redmi-Vergleich: Note 10, Note 10 Pro, Note 10S, Note 10 5G


๐Ÿ“ˆ 26.7 Punkte

๐Ÿ“Œ Xiaomi stellt die Redmi Note 10, Note 10 5G, Note 10S und Note 10 Pro vor


๐Ÿ“ˆ 26.7 Punkte

๐Ÿ“Œ Build a Unified Customer Profile with Customer Insights in Dynamics 365 | Customer Data Platform


๐Ÿ“ˆ 26 Punkte

๐Ÿ“Œ Build a Unified Customer Profile with Customer Insights in Dynamics 365 | Customer Data Platform


๐Ÿ“ˆ 26 Punkte

๐Ÿ“Œ HackerOne: Custom Field Attributes may be created and updated for customers with Custom Field Trial enabled


๐Ÿ“ˆ 24.69 Punkte

๐Ÿ“Œ Are there any computer security professionals that I can communicate with regarding questions about the field and transferring out of my current field?


๐Ÿ“ˆ 24.69 Punkte

๐Ÿ“Œ Low CVE-2020-16252: Field test project Field test


๐Ÿ“ˆ 24.69 Punkte

๐Ÿ“Œ Common Sources of Software Risk in Field Service Companies and How Field Service Software Help Minimize Them


๐Ÿ“ˆ 24.69 Punkte

๐Ÿ“Œ AgStack Launches a Global Scientific Collaboration on a Digital Open Source Field-carbon Model for In-field Carbon Accounting in Agriculture


๐Ÿ“ˆ 24.69 Punkte

๐Ÿ“Œ AI improves field service quality and customer experience


๐Ÿ“ˆ 21.01 Punkte

๐Ÿ“Œ Customer service, especially field service, helps companies outperform competitors and drive growth


๐Ÿ“ˆ 21.01 Punkte

๐Ÿ“Œ TechStage | Unterschiede: Xiaomi Redmi Note 9 vs Note 9S vs Note 9 Pro


๐Ÿ“ˆ 20.03 Punkte

๐Ÿ“Œ Xiaomi Redmi Note 10 Pro Max neben Note 10 und Note 10 Pro am 4. Mรคrz?


๐Ÿ“ˆ 20.03 Punkte

๐Ÿ“Œ Xiaomi Redmi Note 13 vs. Note 13 Pro vs. Note 13 Pro+: So unterscheiden sich die neuen Smartphones


๐Ÿ“ˆ 20.03 Punkte

๐Ÿ“Œ Galaxy Note 10 (+) vs. Note 9 vs. Note 8: Der groรŸe Generationen-Vergleich


๐Ÿ“ˆ 20.03 Punkte

๐Ÿ“Œ WordPress Advanced Custom Fields: Table Field 1.1.12 XSS


๐Ÿ“ˆ 19.79 Punkte

๐Ÿ“Œ WordPress Advanced Custom Fields: Table Field 1.1.12 XSS


๐Ÿ“ˆ 19.79 Punkte

๐Ÿ“Œ [20190303] - Core - XSS in media form field


๐Ÿ“ˆ 19.79 Punkte

๐Ÿ“Œ Custom Field Suite <= 2.5.14 - Authenticated Cross-Site Scripting (XSS)


๐Ÿ“ˆ 19.79 Punkte

๐Ÿ“Œ LearnDash < 3.1.2 - Reflected Cross Site Scripting (XSS) issue on the [ld_profile] search field.


๐Ÿ“ˆ 19.79 Punkte

๐Ÿ“Œ [webapps] Alumni Management System 1.0 - "Last Name field in Registration page" Stored XSS


๐Ÿ“ˆ 19.79 Punkte

๐Ÿ“Œ [webapps] WordPress Plugin Admin Bar & Dashboard Access Control Version: 1.2.8 - "Dashboard Redirect" field Stored Cross-Site Scripting (XSS)


๐Ÿ“ˆ 19.79 Punkte

๐Ÿ“Œ [20190602] - Core - XSS in subform field


๐Ÿ“ˆ 19.79 Punkte

๐Ÿ“Œ [20190303] XSS in media form field


๐Ÿ“ˆ 19.79 Punkte

๐Ÿ“Œ [APPSEC-1885] Stored XSS in Product Name field


๐Ÿ“ˆ 19.79 Punkte











matomo

Kontakt

24/7 kontakt@tsecurity.de

Weitere Informationen

Google Android Playstore Download Button fรผr Team IT Security
๐Ÿ”— Impressum
๐Ÿ”— Datenschutz
Paypal Spenden fรผr Projekt

Social Media

๐Ÿ”— Facebook
๐Ÿ”— Reddit
๐Ÿ”— Team IT Security als Elektron App
๐Ÿ”— © 2015-2023 Team IT Security Nachrichtenportal รผber Cybersecurity
๐Ÿ”— CMS "myDraft" a PHP Portal Software