WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional is prone to a local file inclusion vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional version 184.108.40.206 is vulnerable; prior versions may also be affected.
Update to plugin version 1.3.7 or latest
WordPress Plugin Copy or Move Comments Multiple Vulnerabilities (1.0.0)
WordPress Plugin NEX-Forms-The Ultimate WordPress Form Builder Security Bypass (7.8.7)
WordPress Plugin WP VR-360 Panorama and Virtual Tour Builder For WordPress Cross-Site Request Forgery (8.2.7)
WordPress 4.1.x Same Origin Method Execution (SOME) Vulnerability (4.1 - 4.1.10)
WordPress Plugin Restricted Site Access Security Bypass (7.3.1)