cleantalk
Vulnerabilities and Security Researches

WPCS – WordPress Currency Switcher Professional, CVE-2021-20780

CVE, Research URL

CVE-2021-20780

Home page URL

Security reports for WPCS – WordPress Currency Switcher Professional

Application

WPCS – WordPress Currency Switcher Professional

Published on
Jul 07, 2021
Research Description
Cross-site request forgery (CSRF) vulnerability in WPCS - WordPress Currency Switcher 1.1.6 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.
Affected versions
max 1.1.7.
Status
vulnerable
Previous vulnerability researches
Currency Switcher for WordPress (437bcc5c6d7873eae354597a677a1115a2e199dd) , Jun 06, 2024
Currency Switcher for WooCommerce (CVE-2025-30857) , Apr 02, 2025
WPCS – WordPress Currency Switcher Professional (CVE-2024-38700) , Jul 14, 2024
WPCS – WordPress Currency Switcher Professional (CVE-2025-2169) , Mar 11, 2025
WPCS – WordPress Currency Switcher Professional (CVE-2021-20780) , Jun 07, 2024
New vulnerability
Decorator – WooCommerce Email Customizer (CVE-2025-67599) , Jan 09, 2026
Post Grid Gutenberg Blocks and WordPress Blog Plugin – PostX (CVE-2025-54751) , Jan 09, 2026
Post Grid Gutenberg Blocks and WordPress Blog Plugin – PostX (CVE-2025-55707) , Jan 09, 2026
Post Grid Gutenberg Blocks and WordPress Blog Plugin – PostX (CVE-2025-12980) , Jan 09, 2026
Post Grid Gutenberg Blocks and WordPress Blog Plugin – PostX (CVE-2025-68606) , Jan 09, 2026