Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total3
Critical0
High1
Medium2
Reset
Showing 1-3 of 3 records
Threat Entry Updated 2024-11-21

CVE-2023-51506 - Wordpress Currency Switcher Plugin

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in realmag777 WPCS – WordPress Currency Switcher Professional allows Stored XSS.This issue affects WPCS – WordPress Currency Switcher Professional: from n/a through 1.2.0.

PLUGIN Wordpress Currency Switcher

CVE-2023-51506

MEDIUM CVSS 5.5 2024-02-01
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2023-2556 - Wordpress Currency Switcher Plugin

The WPCS – WordPress Currency Switcher Professional plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the anonymous function for the wpcs_sd_delete action in versions up to, and including, 1.1.9. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to delete an arbitrary custom drop-down currency switcher.

PLUGIN Wordpress Currency Switcher

CVE-2023-2556

MEDIUM CVSS 4.3 2023-06-09
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-20780 - Wordpress Currency Switcher Plugin

Cross-site request forgery (CSRF) vulnerability in WPCS - WordPress Currency Switcher 1.1.6 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.

PLUGIN Wordpress Currency Switcher

CVE-2021-20780

HIGH CVSS 8.8 2021-07-07
Open Full Technical Breakdown
Scroll to top