CVE-2026-57857 | Flow Payment Plugin up to 3.0.8 Checkout flowpayment-fl.php wc_add_notice error_message cross site scripting

SecurityVulns

A vulnerability identified as problematic has been detected in Flow Payment Plugin up to 3.0.8. Affected by this issue is the function wc_add_notice of the file flowpayment-fl.php of the component Checkout. This manipulation of the argument error_message causes cross site scripting.

This vulnerability is registered as CVE-2026-57857. Remote exploitation of the attack is possible. No exploit is available.VulDB Recent EntriesRead More