Fox - Currency Switcher Professional For Woocommerce Security Vulnerabilities and Issues — Fox - Currency Switcher Professional For Woocommerce CVE List

Lucene search

PluginusFox - Currency Switcher Professional For Woocommerce

5 matches found

CVE•added 2024/01/16 4:15 p.m.•58 views

CVE-2021-24566

The WooCommerce Currency Switcher FOX WordPress plugin before 1.3.7 was vulnerable to LFI attacks via the "woocs" shortcode.

8.8CVSS8.6AI score0.01385EPSS

CVE•added 2024/03/29 1:15 p.m.•51 views

CVE-2024-30458

Cross-Site Request Forgery (CSRF) vulnerability in realmag777 WOOCS – WooCommerce Currency Switcher.This issue affects WOOCS – WooCommerce Currency Switcher: from n/a through 1.4.1.7.

8.8CVSS5AI score0.00171EPSS

CVE•added 2024/01/11 9:15 a.m.•49 views

CVE-2023-6556

The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via currency options in all versions up to, and including, 1.4.1.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attacker...

5.4CVSS5.2AI score0.00211EPSS

CVE•added 2024/05/02 5:15 p.m.•45 views

CVE-2024-3734

The FOX – Currency Switcher Professional for WooCommerce plugin is vulnerable to Unauthenticated Arbitrary Shortcode Execution in versions up to, and including, 1.4.1.8. This allows unauthenticated attackers to execute arbitrary shortcodes. The severity and exploitability depends on what other plug...

6.5CVSS7.7AI score0.01256EPSS

CVE•added 2024/09/14 3:15 a.m.•42 views

CVE-2024-8271

The The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.4.2.1. This is due to the software allowing users to execute an action that does not properly validate a value before running do_s...

7.3CVSS7.6AI score0.03271EPSS