CVE-2024-43986
4.8
Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Exploitability: 1.7 / Impact: 2.7
Source: NVD
Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in MagePeople Team Taxi Booking Manager for WooCommerce allows Stored XSS.This issue affects Taxi Booking Manager for WooCommerce: through 1.0.9.
Affected (1)
Products: Mage People: Ecab Taxi Booking Manager
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.1.0 |
References (1)
Source: audit@patchstack.com
Third Party Advisory
Timeline
No history available yet.