Lucene search
K

32 matches found

RedhatCVE
RedhatCVE
added 2026/04/10 7:23 p.m.5 views

CVE-2026-39497

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in RealMag777 FOX woocommerce-currency-switcher allows Blind SQL Injection.This issue affects FOX: from n/a through = 1.4.5...

7.6CVSS5.9AI score0.00279EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/08 9:31 a.m.4 views

EUVD-2026-20166

Missing Authorization vulnerability in RealMag777 FOX woocommerce-currency-switcher allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects FOX: from n/a through = 1.4.5...

5.9AI score0.00291EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/08 9:31 a.m.6 views

EUVD-2026-20164

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in RealMag777 FOX woocommerce-currency-switcher allows Blind SQL Injection.This issue affects FOX: from n/a through = 1.4.5...

5.9AI score0.00279EPSS
Exploits0References2
NVD
NVD
added 2026/04/08 9:16 a.m.17 views

CVE-2026-39497

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in RealMag777 FOX woocommerce-currency-switcher allows Blind SQL Injection.This issue affects FOX: from n/a through = 1.4.5...

7.6CVSS0.00279EPSS
Exploits0References1
NVD
NVD
added 2026/04/08 9:16 a.m.6 views

CVE-2026-39501

Missing Authorization vulnerability in RealMag777 FOX woocommerce-currency-switcher allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects FOX: from n/a through = 1.4.5...

5.3CVSS0.00291EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/08 8:30 a.m.2 views

CVE-2026-39501

Missing Authorization vulnerability in RealMag777 FOX woocommerce-currency-switcher allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects FOX: from n/a through = 1.4.5...

5.9AI score0.00291EPSS
Exploits0References2
CVE
CVE
added 2026/04/08 8:30 a.m.8 views

CVE-2026-39501

CVE-2026-39501 is a Broken Access Control vulnerability affecting WordPress FOX plugin (woocommerce-currency-switcher) versions <= 1.4.5. The root cause is Missing Authorization / incorrectly configured access control, allowing unauthorized access due to insufficient restrictions. Documents co...

5.3CVSS5.9AI score0.00291EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/08 8:30 a.m.24 views

CVE-2026-39501 WordPress FOX plugin <= 1.4.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in RealMag777 FOX woocommerce-currency-switcher allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects FOX: from n/a through = 1.4.5...

5.3CVSS0.00291EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/08 8:30 a.m.2 views

CVE-2026-39497 WordPress FOX plugin <= 1.4.5 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in RealMag777 FOX woocommerce-currency-switcher allows Blind SQL Injection.This issue affects FOX: from n/a through = 1.4.5...

7.6CVSS5.9AI score0.00279EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/08 8:30 a.m.3 views

CVE-2026-39497

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in RealMag777 FOX woocommerce-currency-switcher allows Blind SQL Injection.This issue affects FOX: from n/a through = 1.4.5...

5.9AI score0.00279EPSS
Exploits0References2
CVE
CVE
added 2026/04/08 8:30 a.m.6 views

CVE-2026-39497

Summary of CVE-2026-39497 (WordPress FOX plugin

7.6CVSS5.9AI score0.00279EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.6 views

PT-2026-31132

Missing Authorization vulnerability in RealMag777 FOX woocommerce-currency-switcher allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects FOX: from n/a through = 1.4.5...

5.3CVSS5.9AI score0.00291EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.5 views

PT-2026-31130

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in RealMag777 FOX woocommerce-currency-switcher allows Blind SQL Injection.This issue affects FOX: from n/a through = 1.4.5...

7.6CVSS5.9AI score0.00279EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-28379

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00241EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 9:13 a.m.6 views

CVE-2024-30458

Cross-Site Request Forgery CSRF vulnerability in realmag777 WOOCS – WooCommerce Currency Switcher.This issue affects WOOCS – WooCommerce Currency Switcher: from n/a through 1.4.1.7...

8.8CVSS8.6AI score0.00241EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:33 p.m.4 views

CVE-2021-24566

The WooCommerce Currency Switcher FOX WordPress plugin before 1.3.7 was vulnerable to LFI attacks via the "woocs" shortcode...

8.8CVSS6.9AI score0.01316EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/03/29 11:32 a.m.5 views

CVE-2025-30857

Cross-Site Request Forgery CSRF vulnerability in PressMaximum Currency Switcher for WooCommerce currency-switcher-for-woocommerce allows Stored XSS.This issue affects Currency Switcher for WooCommerce: from n/a through = 0.0.7...

7.1CVSS7.2AI score0.00178EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/11/26 12:25 a.m.5 views

WordPress WOOCS – WooCommerce Currency Switcher plugin <= 1.4.2.2 - Unauthenticated Arbitrary Shortcode Execution vulnerability

Unauthenticated Arbitrary Shortcode Execution vulnerability discovered by mikemyers in WordPress Plugin FOX versions = 1.4.2.2...

7.3CVSS7.1AI score0.00441EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/11/26 12:0 a.m.30 views

WordPress WOOCS – WooCommerce Currency Switcher Plugin <= 1.4.2.2 is vulnerable to Arbitrary Code Execution

Software WOOCS – WooCommerce Currency Switcher Type Plugin Vulnerable versions = 1.4.2.2 Fixed in 1.4.2.3 OWASP Top 10 A3: Injection Classification Arbitrary Code Execution CVE CVE-2024-10640 Patch priority Low CVSS severity Low 7.3 Developer Claim ownership PSID 9ec73d22667c Credits mikemyers...

7.3CVSS7AI score0.00441EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/09/16 12:0 a.m.12 views

WordPress WOOCS – WooCommerce Currency Switcher Plugin <= 1.4.2.1 is vulnerable to Broken Access Control

Software WOOCS – WooCommerce Currency Switcher Type Plugin Vulnerable versions = 1.4.2.1 Fixed in 1.4.2.2 OWASP Top 10 A3: Injection Classification Broken Access Control CVE CVE-2024-8271 Patch priority Medium CVSS severity Medium 7.3 Developer Claim ownership PSID 630dad8a94ec Credits Arkadiusz...

7.3CVSS6.8AI score0.00737EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder