[MEDIUM] Woocommerce Cross-site Scripting via Additional tax classes field when taxes are enabled

PKSA-5c3v-z6jw-1fgc CVE-2021-24323 GHSA-mp46-7x6q-f28m

Affected package: woocommerce/woocommerce

Affected version: <5.2.0

Reported by:
GitHub