Vulnerabilities and security researches forshipment-tracker-for-woocommerce shipment-tracker-for-woocommerce

Apr 20, 2025

CVE, Research URL: CVE-2025-24586
Home page URL: Security reports for Shipment Tracker for Woocommerce
Application: Shipment Tracker for Woocommerce
Date: Apr 17, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bitsstech Shipment Tracker for Woocommerce allows Reflected XSS. This issue affects Shipment Tracker for Woocommerce: from n/a through 1.4.23.
Affected versions: max 1.4.23.1.
Status: vulnerable