Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2019-18668
HistoryNov 02, 2019 - 3:29 p.m.

CVE-2019-18668

2019-11-0215:29:16
mitre
www.cve.org
2

EPSS

0.001

Percentile

26.9%

JSON

An issue was discovered in the Currency Switcher addon before 2.11.2 for WooCommerce if a user provides a currency that was not added by the administrator. In this case, even though the currency does not exist, it will be selected, but a price amount will fall back to the default currency. This means that if an attacker provides a currency that does not exist and is worth less than this default, the attacker can eventually purchase an item for a significantly cheaper price.

Related

prion 1
wpvulndb 1
nvd 1
patchstack 1
cve 1
prion
prion
Default configuration
2019-11-02 16:15:00
wpvulndb
wpvulndb
Currency Switcher for Woocommerce < 2.11.2 - Security Restrictions Bypass
2019-10-31 00:00:00
nvd
nvd
CVE-2019-18668
2019-11-02 16:15:10
patchstack
patchstack
WordPress Currency Switcher for WooCommerce <= 2.11.1 - Security Restrictions Bypass vulnerability
2019-11-04 00:00:00
cve
cve
CVE-2019-18668
2019-11-02 16:15:10

EPSS

0.001

Percentile

26.9%

JSON
Related for CVELIST:CVE-2019-18668
prion1wpvulndb1nvd1patchstack1cve1