Wordpress Currency Switcher Professional Security Vulnerabilities and Issues — Wordpress Currency Switcher Professional CVE List

Lucene search

PluginusWordpress Currency Switcher Professional

3 matches found

CVE•added 2023/06/09 6:16 a.m.•39 views

CVE-2023-2555

The WPCS – WordPress Currency Switcher Professional plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the create function in versions up to, and including, 1.1.9. This makes it possible for authenticated attackers, with subscriber-level per...

4.3CVSS5.2AI score0.00073EPSS

CVE•added 2023/06/09 6:16 a.m.•29 views

CVE-2023-2557

The WPCS – WordPress Currency Switcher Professional plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the save function in versions up to, and including, 1.1.9. This makes it possible for authenticated attackers, with subscriber-level permi...

4.3CVSS5.3AI score0.00053EPSS

CVE•added 2023/06/09 6:16 a.m.•28 views

CVE-2023-2558

The WPCS – WordPress Currency Switcher Professional plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpcs_current_currency shortcode in versions up to, and including, 1.1.9 due to insufficient input sanitization and output escaping on user supplied attributes. This...

6.4CVSS5.6AI score0.0008EPSS