Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistWPScanCVELIST:CVE-2021-24566
HistoryJan 16, 2024 - 3:48 p.m.

CVE-2021-24566 WooCommerce Currency Switcher < 1.3.7 - Authenticated (Low Privilege) Local File Inclusion

2024-01-1615:48:44
WPScan
www.cve.org
3
cve-2021-24566
woocommerce
currency switcher
lfi
vulnerability
wordpress

AI Score

8.8

Confidence

High

EPSS

0.001

Percentile

19.3%

JSON

The WooCommerce Currency Switcher FOX WordPress plugin before 1.3.7 was vulnerable to LFI attacks via the “woocs” shortcode.

CNA Affected

[
  {
    "vendor": "Unknown",
    "product": "FOX",
    "versions": [
      {
        "status": "affected",
        "versionType": "semver",
        "version": "0",
        "lessThan": "1.3.7"
      }
    ],
    "defaultStatus": "unaffected",
    "collectionURL": "https://wordpress.org/plugins"
  }
]

Related

cve 1
prion 1
wpvulndb 1
patchstack 1
nvd 1
cve
cve
CVE-2021-24566
2024-01-16 16:15:09
prion
prion
Code injection
2024-01-16 16:15:00
wpvulndb
wpvulndb
WooCommerce Currency Switcher < 1.3.7 - Authenticated (Low Privilege) Local File Inclusion
2021-07-22 00:00:00
patchstack
patchstack
WordPress WOOCS – WooCommerce Currency Switcher plugin <= 1.3.6.2 - Local File Inclusion (LFI) leading vulnerability to Remote Code Execution (RCE)
2021-07-22 00:00:00
nvd
nvd
CVE-2021-24566
2024-01-16 16:15:09

AI Score

8.8

Confidence

High

EPSS

0.001

Percentile

19.3%

JSON
Related for CVELIST:CVE-2021-24566
cve1prion1wpvulndb1patchstack1nvd1