Cryptocurrency Widgets Security Vulnerabilities and Issues — Cryptocurrency Widgets CVE List

CoolpluginsCryptocurrency Widgets

5 matches found

CVE•added 2024/02/05 9:21 p.m.•83 views

CVE-2024-0709

CVE-2024-0709 affects the WordPress plugin Cryptocurrency Widgets – Price Ticker & Coins List (versions 2.0–2.6.5). The vulnerability is an unauthenticated SQL injection in the coinslist parameter caused by insufficient escaping and lack of proper SQL query preparation, allowing an attacker to ap...

9.8CVSS8.1AI score0.00945EPSS

CVE•added 2023/06/07 1:51 a.m.•54 views

CVE-2022-4950

CVE-2022-4950 affects WordPress plugins developed by Cool Plugins. Affected component is arbitrary plugin installation/activation that can lead to remote code execution by authenticated users with minimal permissions (e.g., subscriber). Attack vector inferred as network-based from CVSS metrics, w...

8.8CVSS8.8AI score0.01377EPSS

CVE•added 2024/08/18 9:7 p.m.•54 views

CVE-2024-43304

Technical details about CVE-2024-43304 are not provided in the supplied documents. The records confirm a reflected XSS in Cryptocurrency Widgets – Price Ticker & Coins List up to version 2.8.0, but no further specifics, affected products, or fixes.

7.1CVSS7AI score0.0029EPSS

CVE•added 2024/03/13 4:28 p.m.•53 views

CVE-2024-27953

CVE-2024-27953 is a Missing Authorization vulnerability in Cryptocurrency Widgets – Price Ticker & Coins List (WordPress plugin). Affected: Cryptocurrency Widgets – Price Ticker & Coins List

4.7CVSS6.4AI score0.00402EPSS

CVE•added 2024/12/13 2:23 p.m.•45 views

CVE-2023-36681

The CVE-2023-36681 entry concerns the WordPress plugin Cryptocurrency Widgets – Price Ticker & Coins List (versions

9.8CVSS8.6AI score0.00719EPSS