CVE-2024-35777 Information

Description

Improper Neutralization of Special Elements in Output Used by a Downstream Component (‘Injection’) vulnerability in Automattic WooCommerce allows Content Spoofing.This issue affects WooCommerce: from n/a through 8.9.2.

Reference

https://patchstack.com/database/vulnerability/woocommerce/wordpress-woocommerce-plugin-8-9-2-content-injection-vulnerability?_s_id=cve