Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in codisto Omnichannel for WooCommerce codistoconnect allows Stored XSS.This issue affects Omnichannel for WooCommerce: from n/a through <= 1.3.65.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Codisto |
|
| Wordpress |
|
No data.
No data.
References
History
Fri, 23 Jan 2026 16:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Codisto
Codisto omnichannel For Woocommerce Wordpress Wordpress wordpress |
|
| Vendors & Products |
Codisto
Codisto omnichannel For Woocommerce Wordpress Wordpress wordpress |
Thu, 22 Jan 2026 23:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in codisto Omnichannel for WooCommerce codistoconnect allows Stored XSS.This issue affects Omnichannel for WooCommerce: from n/a through <= 1.3.65. | |
| Title | WordPress Omnichannel for WooCommerce plugin <= 1.3.65 - Cross Site Scripting (XSS) vulnerability | |
| Weaknesses | CWE-79 | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-01-22T16:52:05.698Z
Reserved: 2025-12-15T10:01:07.754Z
Link: CVE-2025-68041
Vulnrichment
No data.
NVD
Status : Received
Published: 2026-01-22T17:16:09.257
Modified: 2026-01-22T17:16:09.257
Link: CVE-2025-68041
Redhat
No data.