CVE-2021-24679

CVE-2021-24679: Bitcoin / AltCoin Payment Gateway for WooCommerce < 1.6.1 - Reflected Cross-Site Scripting

Vendor Unknown
Product Bitcoin / AltCoin Payment Gateway for WooCommerce & Multivendor store / shop
Weakness CWE-79 · XSS
Published October 4, 2021
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

The Bitcoin / AltCoin Payment Gateway for WooCommerce WordPress plugin before 1.6.1 does not escape the 's' GET parameter before outputting back in the All Masking Rules page, leading to a Reflected Cross-Site Scripting issue

Key dates

02Disclosure timeline

October 4, 2021 CVE published
August 3, 2024 Record updated