cleantalk
Vulnerabilities and Security Researches

WPCS – WordPress Currency Switcher Professional, CVE-2021-20780

CVE, Research URL

CVE-2021-20780

Home page URL

Security reports for WPCS – WordPress Currency Switcher Professional

Application

WPCS – WordPress Currency Switcher Professional

Published on
Jul 07, 2021
Research Description
Cross-site request forgery (CSRF) vulnerability in WPCS - WordPress Currency Switcher 1.1.6 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.
Affected versions
Min -, max 1.1.7.
Status
vulnerable
Previous vulnerability researches
Currency Switcher for WordPress (437bcc5c6d7873eae354597a677a1115a2e199dd) , Jun 06, 2024
WPCS – WordPress Currency Switcher Professional (CVE-2024-38700) , Jul 14, 2024
WPCS – WordPress Currency Switcher Professional (CVE-2025-2169) , Mar 11, 2025
WPCS – WordPress Currency Switcher Professional (CVE-2021-20780) , Jun 07, 2024
WPCS – WordPress Currency Switcher Professional (CVE-2023-2556) , Jun 07, 2024
New vulnerability
WP Last Modified (CVE-2025-28907) , Mar 13, 2025
Lunar – Sell photos online (CVE-2025-28936) , Mar 13, 2025
Skrill Official (CVE-2025-28876) , Mar 13, 2025
WordPress Report Brute Force Attacks and Login Protection ReportAttacks Plugins (CVE-2025-2250) , Mar 13, 2025
All-in-One WP Migration (CVE-2024-10942) , Mar 13, 2025