Vulnerabilities > Pluginus > FOX Currency Switcher Professional FOR Woocommerce > High

DATE	CVE	VULNERABILITY TITLE	RISK
2024-09-14	CVE-2024-8271	Code Injection vulnerability in Pluginus FOX - Currency Switcher Professional for Woocommerce The The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.4.2.1. network low complexity pluginus CWE-94	7.3
2024-01-16	CVE-2021-24566	Unspecified vulnerability in Pluginus FOX - Currency Switcher Professional for Woocommerce The WooCommerce Currency Switcher FOX WordPress plugin before 1.3.7 was vulnerable to LFI attacks via the "woocs" shortcode. network low complexity pluginus	8.8
2023-12-17	CVE-2023-49834	Cross-Site Request Forgery (CSRF) vulnerability in Pluginus FOX - Currency Switcher Professional for Woocommerce Cross-Site Request Forgery (CSRF) vulnerability in realmag777 FOX – Currency Switcher Professional for WooCommerce.This issue affects FOX – Currency Switcher Professional for WooCommerce: from n/a through 1.4.1.4. network low complexity pluginus CWE-352	8.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.