Vulnerabilities > Pluginus
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-05 | CVE-2024-0791 | Missing Authorization vulnerability in Pluginus Wolf - Wordpress Posts Bulk Editor and products Manager Professional The WOLF – WordPress Posts Bulk Editor and Manager Professional plugin for WordPress is vulnerable to unauthorized access, modification or loss of data due to a missing capability check on the wpbe_create_new_term, wpbe_update_tax_term, and wpbe_delete_tax_term functions in all versions up to, and including, 1.0.8.1. | 4.3 |
| 2024-02-05 | CVE-2024-0796 | Cross-Site Request Forgery (CSRF) vulnerability in Pluginus Woot The Active Products Tables for WooCommerce. | 4.3 |
| 2024-02-05 | CVE-2024-0797 | Missing Authorization vulnerability in Pluginus Woot The Active Products Tables for WooCommerce. | 4.3 |
| 2024-02-01 | CVE-2023-51506 | Cross-site Scripting vulnerability in Pluginus Wordpress Currency Switcher Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in realmag777 WPCS – WordPress Currency Switcher Professional allows Stored XSS.This issue affects WPCS – WordPress Currency Switcher Professional: from n/a through 1.2.0. | 5.4 |
| 2024-01-31 | CVE-2024-22159 | Cross-site Scripting vulnerability in Pluginus Wolf - Wordpress Posts Bulk Editor and products Manager Professional Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in realmag777 WOLF – WordPress Posts Bulk Editor and Manager Professional allows Reflected XSS.This issue affects WOLF – WordPress Posts Bulk Editor and Manager Professional: from n/a through 1.0.8. | 6.1 |
| 2024-01-16 | CVE-2021-24566 | Unspecified vulnerability in Pluginus FOX - Currency Switcher Professional for Woocommerce The WooCommerce Currency Switcher FOX WordPress plugin before 1.3.7 was vulnerable to LFI attacks via the "woocs" shortcode. | 8.8 |
| 2024-01-11 | CVE-2023-6556 | Cross-site Scripting vulnerability in Pluginus FOX - Currency Switcher Professional for Woocommerce The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via currency options in all versions up to, and including, 1.4.1.5 due to insufficient input sanitization and output escaping. | 5.4 |
| 2023-12-29 | CVE-2023-51505 | Deserialization of Untrusted Data vulnerability in Pluginus Woot Deserialization of Untrusted Data vulnerability in realmag777 Active Products Tables for WooCommerce. | 9.8 |
| 2023-12-20 | CVE-2023-40010 | SQL Injection vulnerability in Pluginus Husky - products Filter Professional for Woocommerce Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in realmag777 HUSKY – Products Filter for WooCommerce Professional.This issue affects HUSKY – Products Filter for WooCommerce Professional: from n/a through 1.3.4.2. | 9.8 |
| 2023-12-17 | CVE-2023-49834 | Cross-Site Request Forgery (CSRF) vulnerability in Pluginus FOX - Currency Switcher Professional for Woocommerce Cross-Site Request Forgery (CSRF) vulnerability in realmag777 FOX – Currency Switcher Professional for WooCommerce.This issue affects FOX – Currency Switcher Professional for WooCommerce: from n/a through 1.4.1.4. | 8.8 |