Description
WordPress Plugin WooCommerce Multi Currency-Currency Switcher is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently change the price of all products. WordPress Plugin WooCommerce Multi Currency-Currency Switcher version 2.1.17 is vulnerable; prior versions are also affected.
Remediation
Update to plugin version 2.1.18 or latest
References
Related Vulnerabilities
OpenSSL Integer Overflow or Wraparound Vulnerability (CVE-2016-2177)
ownCloud Resource Management Errors Vulnerability (CVE-2015-6500)
Undertow Uncontrolled Resource Consumption Vulnerability (CVE-2022-2053)
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5868)