CVE-2018-20966 – Booster for WooCommerce <= 3.7.0 - Cross-Site Scripting

https://notcve.org/view.php?id=CVE-2018-20966

28 Jul 2018 — The woocommerce-jetpack plugin before 3.8.0 for WordPress has XSS in the Products Per Page feature. El plugin woocommerce-jetpack anterior a la versión3.8.0 para WordPress tiene XSS en la función Products Per Page. • https://github.com/parzel/CVE-2018-20966 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •