Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional Local File Inclusion - CVE-2021-24566 - Vulnerability Database
WP Plugin Woocommerce Currency Switcher

WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional Local File Inclusion - CVE-2021-24566

Critical
Reference: CVE-2021-24566
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-24566
Title: WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional Local File Inclusion
Overview:

WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional is prone to a local file inclusion vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional version 1.3.6.2 is vulnerable prior versions may also be affected.