FraudLabs Pro for WooCommerce Cross-Site Request Forgery Vulnerability Allowing Stored Cross-Site Scripting

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the FraudLabs Pro for WooCommerce plugin, affecting versions through 2.22.7. This vulnerability allows for Stored Cross-Site Scripting (XSS) attacks, where malicious scripts can be injected and executed within the user's browser session.

Impact

Exploitation of this vulnerability could lead to Stored Cross-Site Scripting, where injected scripts are executed in the context of the user.

Remediation

Users of the FraudLabs Pro for WooCommerce plugin should update to version 2.22.9 or later to address this vulnerability.