Lucene search

K
wpvulndbWpvulndbWPVDB-ID:C350EA99-91B9-40C8-9163-9AA0F3450861
HistoryDec 26, 2023 - 12:00 a.m.

FOX – Currency Switcher Professional for WooCommerce < 1.4.1.7 - Subscriber+ Stored XSS

2023-12-2600:00:00
wpscan.com
10
woocommerce
currency switcher
stored xss
security vulnerability
plugin

5.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.2%

Description The plugin does not sanitise and escape its currency options parameters, which could allow any authenticated users, such as subscribers to perform Stored Cross-Site Scripting attacks

CPENameOperatorVersion
eq1.4.1.7

5.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.2%

Related for WPVDB-ID:C350EA99-91B9-40C8-9163-9AA0F3450861