ГлавнаяУязвимости → CVE-2021-24566
8.8высокая

CVE-2021-24566

Описание

The WooCommerce Currency Switcher FOX WordPress plugin before 1.3.7 was vulnerable to LFI attacks via the "woocs" shortcode.

Затрагиваемое ПО
Pluginus Fox - currency switcher professional for woocommerce
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://jetpack.com/2021/07/22/severe-vulnerability-patched-in-woocommerce-currency-switcher/https://wpscan.com/vulnerability/a0bc4b13-53fe-462d-8306-8915196d3a5a/https://jetpack.com/2021/07/22/severe-vulnerability-patched-in-woocommerce-currency-switcher/https://wpscan.com/vulnerability/a0bc4b13-53fe-462d-8306-8915196d3a5a/