Curcy Security Vulnerabilities and Issues — Curcy CVE List

Lucene search

VillathemeCurcy

4 matches found

CVE•added 2024/10/17 8:15 p.m.•41 views

CVE-2024-49283

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in VillaTheme CURCY allows Reflected XSS.This issue affects CURCY: from n/a through 2.2.3.

7.1CVSS7.2AI score0.00085EPSS

CVE•added 2024/12/13 3:15 p.m.•33 views

CVE-2022-46796

Missing Authorization vulnerability in VillaTheme CURCY allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CURCY: from n/a through 2.1.25.

6.5CVSS6.5AI score0.00083EPSS

CVE•added 2023/12/21 6:15 p.m.•27 views

CVE-2023-50831

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in VillaTheme CURCY – Multi Currency for WooCommerce allows Stored XSS.This issue affects CURCY – Multi Currency for WooCommerce: from n/a through 2.2.0.

6.5CVSS6.2AI score0.00169EPSS

CVE•added 2025/05/16 4:15 p.m.•13 views

CVE-2025-47563

Missing Authorization vulnerability in villatheme CURCY allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects CURCY: from n/a through 2.3.7.

5.3CVSS5.4AI score0.00042EPSS