Description
WordPress Plugin WooCommerce Multi Currency-Currency Switcher is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently change the price of all products. WordPress Plugin WooCommerce Multi Currency-Currency Switcher version 2.1.17 is vulnerable; prior versions are also affected.
Remediation
Update to plugin version 2.1.18 or latest
References
Related Vulnerabilities
Oracle HTTP Server Improper Input Validation Vulnerability (CVE-2020-35169)
WordPress Plugin Smooth Slider SQL Injection (2.6.5)
WordPress 'swfupload.swf' Cross-Site Scripting Vulnerability (2.5 - 3.3.1)
PHP NULL Pointer Dereference Vulnerability (CVE-2020-7062)
WordPress Plugin WordPress File Upload Directory Traversal (4.12.2)