WordPress shopping cart plugin
Tagged: notification, vulnerability, xss
This topic contains 2 replies, has 3 voices, and was last updated by GD 1 year, 8 months ago.
High-Tech Bridge SA Security Research Lab has discovered vulnerability in WP e-Commerce, which can be exploited to perform cross-site scripting attacks (XSS).
Developers can contact us by email advisory (at) htbridge.ch for details.
For any questions related to this notification email – please visit our General Information & Disclosure Policy page: http://www.htbridge.ch/advisory/disclosure_policy.html
Just a quick post to say that the team in NZ are aware of this, and will pick it up for investigation with htbridge direct.
I’m curious what the status is of this is as it’s been a couple months now and no update has been released. It’s apparently still an issue in 3.8.6
The forum ‘3.8 Stable Release’ is closed to new topics and replies.
Register | Lost your password?
A password will be e-mailed to you.
Log in | Lost your password?
Username or E-mail:
Log in| Register