CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Pluginus: >> Woocommerce Currency Switcher >> 1.2.8 Security Vulnerabilities

CVE-2021-25043

The WOOCS WordPress plugin before 1.3.7.3 does not sanitise and escape the custom_prices parameter before outputting it back in the response, leading to a Reflected Cross-Site Scripting issue

CVSS Score

6.1

EPSS Score

0.002

Published

2022-01-10

Page 1

Vulnerabilities

Vulnerable Software

Pluginus: >> Woocommerce Currency Switcher >> 1.2.8 Security Vulnerabilities

Products

Pricing

Contact Us