Description
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Custom Product Tabs for WooCommerce plugin <= 1.7.9 on WordPress.
Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| YIKES, Inc. | Custom Product Tabs for WooCommerce (WordPress plugin) | affected |
|
No data.
No data available yet.
Remediation
Vendor Solution
Update to 1.8.0 or higher versions.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2022-46464 | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Custom Product Tabs for WooCommerce plugin <= 1.7.9 on WordPress. |
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-04-28T16:07:50.629Z
Reserved: 2022-10-19T00:00:00.000Z
Link: CVE-2022-43463
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-11-18T19:15:31.827
Modified: 2024-11-21T07:26:32.340
Link: CVE-2022-43463
Redhat
No data.
OpenCVE Enrichment
No data.
Weaknesses