CVE-2024-7846 Information

Description

YITH WooCommerce Ajax Search is vulnerable to a XSS vulnerability due to insufficient sanitization of user supplied block attributes. This makes it possible for Contributors+ attackers to inject arbitrary scripts.

Reference

https://wpscan.com/vulnerability/86f7a136-d09b-4637-97ae-2cdaaff172a3/