Wordpress Currency Switcher Security Vulnerabilities and Issues — Wordpress Currency Switcher CVE List

PluginusWordpress Currency Switcher

3 matches found

CVE•added 2024/02/01 11:22 a.m.•77 views

CVE-2023-51506

CVE-2023-51506 affects WPCS – WordPress Currency Switcher Professional (Authenticated: Contributor+). It is a Stored Cross-Site Scripting vulnerability caused by improper input neutralization during web page generation. Affected product/version: WPCS Professional up to and including 1.2.0. Impact...

5.5CVSS6.7AI score0.00077EPSS

CVE•added 2024/03/29 1:7 p.m.•60 views

CVE-2024-30456

CVE-2024-30456 describes a Cross-Site Request Forgery (CSRF) vulnerability in realmag777 WPCS (WordPress Currency Switcher Pro). The issue affects WPCS versions from unspecified earliest release up to 1.2.0.1. The CVE entry includes an CVSS vector with AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H, indicat...

8.8CVSS8.6AI score0.00171EPSS

CVE•added 2023/06/09 5:33 a.m.•44 views

CVE-2023-2556

CVE-2023-2556 involves the WPCS – WordPress Currency Switcher Professional plugin for WordPress (≤ 1.1.9). The vulnerability is a missing capability check in the wpcs_sd_delete action, enabling authenticated users with subscriber-level permissions and above to delete an arbitrary custom drop-down...

4.3CVSS5.3AI score0.00077EPSS