Lucene search
PRIOn knowledge basePRION:CVE-2021-4376HistoryJun 07, 2023 - 2:15 a.m.
Authorization
2023-06-0702:15:00
PRIOn knowledge base
www.prio-n.com
2
woocommerce
multi currency
wordpress
vulnerability
missing authorization
authenticated attackers
product price change
The WooCommerce Multi Currency plugin for WordPress is vulnerable to Missing Authorization in versions up to, and including, 2.1.17. This makes it possible for authenticated attackers to change the price of a product to an arbitrary value.
| CPE | Name | Operator | Version |
|---|---|---|---|
| woocommerce_multi_currency | le | 2.1.17 |
References
plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2734576%40woo-multi-currency&new=2734576%40woo-multi-currency&sfp_email=&sfph_mail=
wordpress.org/plugins/woo-multi-currency/
wpscan.com/vulnerability/480125bc-bab3-45b8-9325-a4d406655a61
www.wordfence.com/threat-intel/vulnerabilities/id/d8a490c6-14c1-4c71-b44c-1e362cc892a8?source=cve
Related
nvd
nvd
CVE-2021-4376
2023-06-07 02:15:15
cve
cve
CVE-2021-4376
2023-06-07 02:15:15
cvelist
cvelist
CVE-2021-4376
2023-06-07 01:51:46